<html>
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8">
</head>
<body>
<font size="4" face="Courier New, Courier, monospace">Ok I am
running two dovecot servers and feel pretty close to getting
things resolved config wise<br>
<br>
there are however 2 or 3 issues that all seem to be related<br>
<br>
i have enclosed FULL config files for both mail18.scom.ca &
mail19.scom.ca<br>
<br>
I have a private network that is used for the replication
(10.221.0.0/24) - port 12345 is blocked by pf firewall from
outside.<br>
<br>
I am running freebsd 12.1 and built one server and then raid
copied it to the second (mail19) so all the ports / builds etc are
identical<br>
<br>
I did start with dovecot-2.3.14 but pigeonhole would not build on
freebsd (thanks for that advice / reply )until upgrade to
dovecot-2.3.18<br>
<br>
dovecot-2.3.18 was built and installed on both servers along with
a good build (freebsd build error was fixed after upgrading)
dovecot-2.3-pigeonhole-0.5.18<br>
<br>
please note that the second mailserver (mail19) is on an nfs share
dedicated to the server (i am awaiting sdram drives to replace
this issue)<br>
<br>
but since i am getting errors on both servers i feel nfs share is
not the issue (and yes i enabled dlock)<br>
<br>
mail18 is on normal sdram drives (more of an fyi as i dont think
this is the issue)<br>
<br>
neither mail server is connected to the other in any kind of a
shared way - other then replication<br>
<br>
postfix should be delivering via :<br>
<br>
pipe -n dovecot -t unix flags=DRhu user=vmail:vmail
argv=/usr/local/libexec/dovecot/deliver -f ${sender} -d
${recipient}<br>
<br>
Replication only works properly at startup (ie the mail boxes do
sync), afterwhich nothing seems to trigger the differences between
the servers to update (notify i believe)<br>
<br>
manually running :<br>
<br>
[05:04:46] mail18.scom.ca [root:0] /usr/local/etc/dovecot<br>
# doveadm sync -u <a class="moz-txt-link-abbreviated" href="mailto:paul@scom.ca">paul@scom.ca</a> remote:10.221.0.19<br>
<br>
&<br>
<br>
[05:21:18] mail19.scom.ca [root:0] /usr/local/etc/dovecot<br>
# doveadm sync -u <a class="moz-txt-link-abbreviated" href="mailto:paul@scom.ca">paul@scom.ca</a> remote:10.221.0.18 <br>
<br>
does seem to work but with mixed results.<br>
<br>
<br>
<br>
<br>
I also included postfix main.cf & master.cf as well as some
googling has indicated the file locking may be on the postfix side
??<br>
<br>
Also more then happy to donate just can not figure out how ???<br>
<br>
<br>
so that being said :<br>
<br>
General logging errors are as follows ?<br>
<br>
[04:46:43] peer1.scom.ca [paul:0] /home/paul<br>
## log dovecot rror<br>
<br>
Filtering by : dovecot & rror<br>
<br>
mail18 02-28 04:46:58 {dovecot} [30374] (859753649)<br>
doveadm(<a class="moz-txt-link-abbreviated" href="mailto:ed@scom.ca">ed@scom.ca</a>)<30486><SUtDJMGZHGIWdwAAz1jc/w>:<br>
Error:
write(<local>) failed: Timed out after 60 seconds<br>
mail19 02-28 04:47:00 {dovecot} [22194] (859753669)<br>
doveadm(<a class="moz-txt-link-abbreviated" href="mailto:paul@scom.ca">paul@scom.ca</a>)<22219><KQzDNbyZHGLLVgAA0dxyZQ>:<br>
Error:
write(<local>) failed: Timed out after 60 seconds<br>
mail18 02-28 04:47:05 {dovecot} [30374] (859753724)
doveadm(<a class="moz-txt-link-abbreviated" href="mailto:ed.hanna@dssmgmt.com">ed.hanna@dssmgmt.com</a>)<30484><0dYbI8G<br>
ZHGIUdwAAz1jc/w>: Error: write(<local>) failed: Timed<br>
out after 60
seconds<br>
mail18 02-28 04:47:14 {dovecot} [30374] (859753799)<br>
doveadm(<a class="moz-txt-link-abbreviated" href="mailto:paul@scom.ca">paul@scom.ca</a>)<30485><W/KsI8GZHGIVdwAAz1jc/w>:<br>
Error:
write(<local>) failed: Timed out after 60 seconds<br>
mail18 02-28 04:47:57 {dovecot} [30374] (859754250)
doveadm(<a class="moz-txt-link-abbreviated" href="mailto:paul@paulkudla.net">paul@paulkudla.net</a>)<30676></v6tIASaH<br>
GLUdwAAz1jc/w>: Error: write(<local>) failed: Timed out<br>
after 60
seconds<br>
mail18 02-28 04:49:05 {dovecot} [30374] (859754939)
doveadm(<a class="moz-txt-link-abbreviated" href="mailto:keith@elirpa.com">keith@elirpa.com</a>)<30675><aasfIASaHGL<br>
TdwAAz1jc/w>: Error: write(<local>) failed: Timed out<br>
after 60
seconds<br>
mail19 02-28 04:54:45 {dovecot} [22194] (859759457)
doveadm(<a class="moz-txt-link-abbreviated" href="mailto:paul@paulkudla.net">paul@paulkudla.net</a>)<22533><m1NpN4GbH<br>
GIFWAAA0dxyZQ>: Error: write(<local>) failed: Timed out<br>
after 60
seconds<br>
mail19 02-28 04:55:07 {dovecot} [22194] (859759868)<br>
doveadm(<a class="moz-txt-link-abbreviated" href="mailto:ed@scom.ca">ed@scom.ca</a>)<22535><UrLTOYGbHGIHWAAA0dxyZQ>:<br>
Error:
write(<local>) failed: Timed out after 60 seconds<br>
mail19 02-28 04:55:28 {dovecot} [22194] (859760130)
doveadm(<a class="moz-txt-link-abbreviated" href="mailto:ed.hanna@dssmgmt.com">ed.hanna@dssmgmt.com</a>)<22534><kc2dOIG<br>
bHGIGWAAA0dxyZQ>: Error: write(<local>) failed: Timed<br>
out after 60
seconds<br>
mail19 02-28 04:58:52 {dovecot} [22194] (859762842)
replicator: Error: Raw backtrace: #0<br>
fatal_handler_real[0x11370e50] -> #1<br>
i_internal_fatal_handler[0x11370f80] -> #2<br>
i_panic[0x112c4456] -> #3<br>
mem_block_alloc.cold[0x112c3d0d] -> #4<br>
t_malloc_real[0x1136a420] -> #5<br>
pool_data_stack_realloc[0x113905f0] -> #6<br>
buffer_alloc[0x11366060] -> #7 buffer_append[0x11366390]<br>
-> #8
replicator_queue_push[0x01026fb0] -> #9<br>
dsync_callback[0x01026730] -> #10<br>
dsync_callback[0x01025e60] -> #11 dsync_input[0x010<br>
mail19 02-28 04:58:52 {dovecot} [22194] (859762844)
replicator: Error: 0x11388360] -> #14<br>
io_loop_handler_run[0x11386fb0] -> #15<br>
io_loop_run[0x11387130] -> #16<br>
master_service_run[0x112f9c00] -> #17 main[0x01024de0]<br>
-> #18
_start[0x01024ff0] -> #19 [unw_get_proc_name()<br>
failed: -1]<br>
mail19 02-28 04:58:55 {dovecot} [22194] (859762875)
doveadm(<a class="moz-txt-link-abbreviated" href="mailto:keith@elirpa.com">keith@elirpa.com</a>)<22532><zxU4NoGbHGI<br>
EWAAA0dxyZQ>: Error: write(<local>) failed: Timed out<br>
after 60
seconds<br>
<br>
<br>
<br>
Dovecot config for mail18.scom.ca (server - 1)<br>
<br>
<br>
[05:03:57] mail18.scom.ca [root:0] /usr/local/etc/dovecot<br>
# cat dovecot.conf<br>
# 2.3.14 (cee3cbc0d): /usr/local/etc/dovecot/dovecot.conf<br>
# OS: FreeBSD 12.1-RELEASE amd64 <br>
# Hostname: mail18.scom.ca<br>
<br>
auth_debug = no <br>
auth_debug_passwords = no <br>
<br>
mail_debug = no <br>
<br>
#lock_method = dotlock<br>
#mail_max_lock_timeout = 300s<br>
<br>
#mbox_read_locks = dotlock<br>
#mbox_write_locks = dotlock<br>
<br>
mmap_disable = yes<br>
mail_fsync = always<br>
mail_nfs_storage = yes <br>
mail_nfs_index = yes<br>
<br>
auth_mechanisms = plain login<br>
auth_verbose = yes<br>
base_dir = /data/dovecot/run/<br>
debug_log_path = syslog<br>
disable_plaintext_auth = no<br>
dsync_features = empty-header-workaround<br>
<br>
#imapc_features = rfc822.size fetch-headers<br>
#imapc_host = mail.scom.ca<br>
#imapc_password = Pk554669<br>
#imapc_user = <a class="moz-txt-link-abbreviated" href="mailto:paul@scom.ca">paul@scom.ca</a><br>
<br>
info_log_path = syslog<br>
login_greeting = SCOM.CA Internet Services Inc. - Dovecot ready<br>
login_log_format_elements = user=<%u> method=%m rip=%r
lip=%l mpid=%e %c<br>
mail_location = maildir:~/<br>
mail_plugins = " virtual"<br>
mail_prefetch_count = 20<br>
<br>
protocols = imap pop3 sieve<br>
<br>
mail_plugins = $mail_plugins notify replication<br>
<br>
protocol lmtp {<br>
mail_plugins = $mail_plugins notify replication sieve <br>
}<br>
<br>
protocol lda {<br>
mail_plugins = $mail_plugins notify replication sieve<br>
}<br>
<br>
namespace inbox {<br>
inbox = yes<br>
location = <br>
mailbox Drafts {<br>
auto = subscribe<br>
special_use = \Drafts<br>
}<br>
mailbox Sent {<br>
auto = subscribe<br>
special_use = \Sent<br>
}<br>
mailbox Trash {<br>
auto = subscribe<br>
special_use = \Trash<br>
}<br>
prefix = <br>
separator = /<br>
}<br>
<br>
passdb {<br>
args = /usr/local/etc/dovecot/dovecot-pgsql.conf<br>
driver = sql<br>
}<br>
<br>
doveadm_port = 12345<br>
doveadm_password = secretxxxx<br>
<br>
service doveadm {<br>
inet_listener {<br>
port = 12345<br>
}<br>
}<br>
<br>
<br>
#dsync_remote_cmd = ssh -l%{login} %{host} doveadm dsync-server
-u%u<br>
#dsync_remote_cmd = doveadm sync -d -u%u<br>
<br>
replication_dsync_parameters = -d -N -l 30 -U<br>
<br>
plugin {<br>
mail_log_events = delete undelete expunge copy mailbox_delete
mailbox_rename<br>
mail_log_fields = uid, box, msgid, from, subject, size, vsize,
flags<br>
<br>
sieve = <a class="moz-txt-link-freetext" href="file:~/sieve/sieve;active=~/sieve/.dovecot.sieve">file:~/sieve/sieve;active=~/sieve/.dovecot.sieve</a><br>
sieve_duplicate_default_period = 1h<br>
sieve_duplicate_max_period = 1d<br>
<br>
<br>
mail_replica = tcp:10.221.0.19<br>
#mail_replica = remote:10.221.0.19<br>
replication_sync_timeout = 2<br>
}<br>
<br>
service anvil {<br>
unix_listener anvil {<br>
group = vmail<br>
mode = 0666<br>
}<br>
}<br>
<br>
<br>
service auth {<br>
unix_listener /usr/home/postfix/private/auth {<br>
mode = 0660<br>
user = postfix<br>
group = postfix<br>
}<br>
}<br>
<br>
service stats {<br>
unix_listener stats-reader {<br>
group = vmail<br>
mode = 0660<br>
}<br>
unix_listener stats-writer {<br>
group = vmail<br>
mode = 0660<br>
}<br>
}<br>
userdb {<br>
args = /usr/local/etc/dovecot/dovecot-pgsql.conf<br>
driver = sql<br>
<br>
}<br>
<br>
protocol imap {<br>
mail_max_userip_connections = 50 <br>
mail_plugins = $mail_plugins notify replication<br>
}<br>
<br>
protocol pop3 {<br>
mail_max_userip_connections = 50<br>
mail_plugins = $mail_plugins notify replication<br>
}<br>
<br>
service managesieve-login {<br>
inet_listener sieve {<br>
port = 4190<br>
}<br>
}<br>
<br>
verbose_proctitle = yes<br>
<br>
replication_max_conns = 10<br>
<br>
replication_full_sync_interval = 30m <br>
<br>
service replicator {<br>
unix_listener replicator-doveadm {<br>
mode = 0666<br>
user = vmail<br>
}<br>
}<br>
<br>
service aggregator {<br>
fifo_listener replication-notify-fifo {<br>
user = vmail<br>
}<br>
unix_listener replication-notify {<br>
user = vmail<br>
}<br>
}<br>
<br>
<br>
<br>
#Addition ssl config<br>
!include sni.conf<br>
<br>
<br>
And dovecot-pgsql.conf file (same on both servers) :<br>
<br>
driver = pgsql<br>
connect = host=localhost port=5433 dbname=scom_billing user=pgsql
password=Scom411400<br>
default_pass_scheme = PLAIN <br>
<br>
password_query = SELECT username as user, password FROM
email_users WHERE username = '%u' and password <> 'alias'
and status = True and destination = '%u'<br>
<br>
user_query = SELECT home, uid, gid FROM email_users WHERE username
= '%u' and password <> 'alias' and status = True and
destination = '%u'<br>
<br>
iterate_query = SELECT user, password FROM email_users WHERE
username = '%u' and password <> 'alias' and status = True
and destination = '%u'<br>
<br>
<br>
Mail 19 dovecot config file :<br>
<br>
[05:05:40] mail19.scom.ca [root:0] /usr/local/etc/dovecot<br>
# cat dovecot.conf<br>
# 2.3.14 (cee3cbc0d): /usr/local/etc/dovecot/dovecot.conf<br>
# OS: FreeBSD 12.1-RELEASE amd64 <br>
# Hostname: mail19.scom.ca<br>
<br>
auth_debug = no <br>
auth_debug_passwords = no <br>
<br>
mail_debug = no <br>
<br>
#lock_method = dotlock<br>
#mail_max_lock_timeout = 5s<br>
<br>
#mbox_read_locks = dotlock <br>
#mbox_write_locks = dotlock<br>
<br>
mmap_disable = yes<br>
mail_fsync = always<br>
mail_nfs_storage = yes <br>
mail_nfs_index = yes <br>
<br>
<br>
auth_mechanisms = plain login<br>
auth_verbose = yes<br>
base_dir = /data/dovecot/run/<br>
debug_log_path = syslog<br>
disable_plaintext_auth = no<br>
dsync_features = empty-header-workaround<br>
<br>
#imapc_features = rfc822.size fetch-headers<br>
#imapc_host = mail.scom.ca<br>
#imapc_password = Pk554669<br>
#imapc_user = <a class="moz-txt-link-abbreviated" href="mailto:paul@scom.ca">paul@scom.ca</a><br>
<br>
info_log_path = syslog<br>
login_greeting = SCOM.CA Internet Services Inc. - Dovecot ready<br>
login_log_format_elements = user=<%u> method=%m rip=%r
lip=%l mpid=%e %c<br>
mail_location = maildir:~/<br>
mail_plugins = " virtual"<br>
mail_prefetch_count = 20<br>
<br>
mail_plugins = $mail_plugins notify replication<br>
<br>
protocols = imap pop3 sieve<br>
<br>
protocol lmtp {<br>
mail_plugins = $mail_plugins notify replication sieve<br>
}<br>
<br>
protocol lda {<br>
mail_plugins = $mail_plugins notify replication sieve<br>
}<br>
<br>
<br>
namespace inbox {<br>
inbox = yes<br>
location = <br>
mailbox Drafts {<br>
auto = subscribe<br>
special_use = \Drafts<br>
}<br>
mailbox Sent {<br>
auto = subscribe<br>
special_use = \Sent<br>
}<br>
mailbox Trash {<br>
auto = subscribe<br>
special_use = \Trash<br>
}<br>
prefix = <br>
separator = /<br>
}<br>
<br>
passdb {<br>
args = /usr/local/etc/dovecot/dovecot-pgsql.conf<br>
driver = sql<br>
}<br>
<br>
doveadm_port = 12345<br>
doveadm_password = secretxxxx<br>
<br>
service doveadm {<br>
inet_listener {<br>
port = 12345<br>
}<br>
}<br>
<br>
#dsync_remote_cmd = ssh -l%{login} %{host} doveadm dsync-server
-u%u<br>
#dsync_remote_cmd = doveadm sync -d -u%u<br>
<br>
replication_dsync_parameters = -d -N -l 30 -U<br>
<br>
plugin {<br>
mail_log_events = delete undelete expunge copy mailbox_delete
mailbox_rename<br>
mail_log_fields = uid, box, msgid, from, subject, size, vsize,
flags<br>
<br>
sieve = <a class="moz-txt-link-freetext" href="file:~/sieve/sieve;active=~/sieve/.dovecot.sieve">file:~/sieve/sieve;active=~/sieve/.dovecot.sieve</a><br>
sieve_duplicate_default_period = 1h<br>
sieve_duplicate_max_period = 1d<br>
<br>
mail_replica = tcp:10.221.0.18<br>
#mail_replica = <a class="moz-txt-link-abbreviated" href="mailto:remote:vmail@10.221.0.18">remote:vmail@10.221.0.18</a><br>
replication_sync_timeout = 2<br>
}<br>
service anvil {<br>
unix_listener anvil {<br>
group = vmail<br>
mode = 0666<br>
}<br>
}<br>
<br>
<br>
service auth {<br>
unix_listener /usr/home/postfix/private/auth {<br>
mode = 0660<br>
user = postfix<br>
group = postfix<br>
}<br>
}<br>
<br>
service stats {<br>
unix_listener stats-reader {<br>
group = vmail<br>
mode = 0660<br>
}<br>
unix_listener stats-writer {<br>
group = vmail<br>
mode = 0660<br>
}<br>
}<br>
<br>
userdb {<br>
args = /usr/local/etc/dovecot/dovecot-pgsql.conf<br>
driver = sql<br>
}<br>
<br>
protocol imap {<br>
mail_max_userip_connections = 50 <br>
mail_plugins = $mail_plugins notify replication<br>
}<br>
<br>
protocol pop3 {<br>
mail_max_userip_connections = 50<br>
mail_plugins = $mail_plugins notify replication<br>
}<br>
<br>
<br>
service managesieve-login {<br>
inet_listener sieve {<br>
port = 4190<br>
}<br>
}<br>
<br>
<br>
verbose_proctitle = yes<br>
<br>
replication_max_conns = 10<br>
<br>
replication_full_sync_interval = 30m <br>
<br>
<br>
service replicator {<br>
unix_listener replicator-doveadm {<br>
mode = 0666<br>
user = vmail<br>
}<br>
}<br>
<br>
service aggregator {<br>
fifo_listener replication-notify-fifo {<br>
user = vmail<br>
}<br>
unix_listener replication-notify {<br>
user = vmail<br>
}<br>
}<br>
<br>
service replicator {<br>
unix_listener replicator-doveadm {<br>
mode = 0600<br>
user = vmail <br>
}<br>
}<br>
<br>
<br>
replication_dsync_parameters = -d -N -l 30 -U<br>
<br>
#Addition ssl config<br>
!include sni.conf<br>
<br>
sni.conf file (same on both servers) :<br>
<br>
#sni.conf<br>
ssl = yes<br>
verbose_ssl = yes<br>
ssl_dh =</usr/local/etc/dovecot/dh-4096.pem<br>
ssl_prefer_server_ciphers = yes<br>
#ssl_min_protocol = TLSv1.2<br>
<br>
#Default *.scom.ca<br>
ssl_key =</usr/local/etc/dovecot/scom.pem<br>
ssl_cert =</usr/local/etc/dovecot/scom.pem<br>
ssl_ca =</usr/local/etc/dovecot/scom.pem<br>
<br>
local_name .scom.ca {<br>
ssl_key = /programs/common/getssl.cert -c *.scom.ca -q yes<br>
ssl_cert = /programs/common/getssl.cert -c *.scom.ca -q yes<br>
ssl_ca = /programs/common/getssl.cert -c *.scom.ca -q yes<br>
}<br>
<br>
local_name mail.clancyca.com {<br>
ssl_key = /programs/common/getssl.cert -c mail.clancyca.com -q
yes<br>
ssl_cert = /programs/common/getssl.cert -c mail.clancyca.com -q
yes<br>
ssl_ca = /programs/common/getssl.cert -c mail.clancyca.com -q
yes<br>
}<br>
<br>
local_name secure.clancyca.com {<br>
ssl_key = /programs/common/getssl.cert -c secure.clancyca.com -q
yes<br>
ssl_cert = /programs/common/getssl.cert -c secure.clancyca.com
-q yes<br>
ssl_ca = /programs/common/getssl.cert -c secure.clancyca.com -q
yes<br>
}<br>
<br>
local_name mail.paulkudla.net {<br>
ssl_key = /programs/common/getssl.cert -c mail.paulkudla.net -q
yes<br>
ssl_cert = /programs/common/getssl.cert -c mail.paulkudla.net -q
yes<br>
ssl_ca = /programs/common/getssl.cert -c mail.paulkudla.net -q
yes<br>
}<br>
<br>
local_name mail.ekst.ca {<br>
ssl_key = /programs/common/getssl.cert -c mail.ekst.ca -q yes<br>
ssl_cert = /programs/common/getssl.cert -c mail.ekst.ca -q yes<br>
ssl_ca = /programs/common/getssl.cert -c mail.ekst.ca -q yes<br>
}<br>
<br>
local_name mail.hamletdevelopments.ca {<br>
ssl_key = /programs/common/getssl.cert -c
mail.hamletdevelopments.ca -q yes<br>
ssl_cert = /programs/common/getssl.cert -c
mail.hamletdevelopments.ca -q yes<br>
ssl_ca = /programs/common/getssl.cert -c
mail.hamletdevelopments.ca -q yes<br>
}<br>
<br>
<br>
Postfix main.cf (same on both servers)<br>
<br>
[05:15:03] mail19.scom.ca [root:0] /usr/home/postfix.local/config<br>
# cat main.cf<br>
# Global Postfix configuration file. This file lists only a subset<br>
# of all parameters. For the syntax, and for a complete parameter<br>
# list, see the postconf(5) manual page (command: "man 5
postconf").<br>
#<br>
# For common configuration examples, see
BASIC_CONFIGURATION_README<br>
# and STANDARD_CONFIGURATION_README. To find these documents, use<br>
# the command "postconf html_directory readme_directory", or go to<br>
# <a class="moz-txt-link-freetext" href="http://www.postfix.org/">http://www.postfix.org/</a>.<br>
#<br>
# For best results, change no more than 2-3 parameters at a time,<br>
# and test if Postfix still works after every change.<br>
<br>
alternate_config_directories = /usr/home/postfix/config<br>
data_directory = /var/lib/postfix.local<br>
<br>
maillog_file = /var/log/postfix.local<br>
<br>
compatibility_level=2<br>
#compatibility_level=3.6<br>
<br>
# SOFT BOUNCE<br>
#<br>
# The soft_bounce parameter provides a limited safety net for<br>
# testing. When soft_bounce is enabled, mail will remain queued
that<br>
# would otherwise bounce. This parameter disables
locally-generated<br>
# bounces, and prevents the SMTP server from rejecting mail
permanently<br>
# (by changing 5xx replies into 4xx replies). However, soft_bounce<br>
# is no cure for address rewriting mistakes or mail routing
mistakes.<br>
#<br>
soft_bounce = no <br>
#relayhost = 216.106.96.23<br>
<br>
# LOCAL PATHNAME INFORMATION<br>
#<br>
# The queue_directory specifies the location of the Postfix queue.<br>
# This is also the root directory of Postfix daemons that run
chrooted.<br>
# See the files in examples/chroot-setup for setting up Postfix
chroot<br>
# environments on different UNIX systems.<br>
#<br>
queue_directory = /usr/home/postfix.local<br>
<br>
# The command_directory parameter specifies the location of all<br>
# postXXX commands.<br>
#<br>
command_directory = /usr/local/sbin<br>
<br>
# The daemon_directory parameter specifies the location of all
Postfix<br>
# daemon programs (i.e. programs listed in the master.cf file).
This<br>
# directory must be owned by root.<br>
#<br>
daemon_directory = /usr/local/libexec/postfix<br>
<br>
# QUEUE AND PROCESS OWNERSHIP<br>
#<br>
# The mail_owner parameter specifies the owner of the Postfix
queue<br>
# and of most Postfix daemon processes. Specify the name of a
user<br>
# account THAT DOES NOT SHARE ITS USER OR GROUP ID WITH OTHER
ACCOUNTS<br>
# AND THAT OWNS NO OTHER FILES OR PROCESSES ON THE SYSTEM. In<br>
# particular, don't specify nobody or daemon. PLEASE USE A
DEDICATED<br>
# USER.<br>
#<br>
mail_owner = postfix<br>
<br>
# The default_privs parameter specifies the default rights used by<br>
# the local delivery agent for delivery to external file or
command.<br>
# These rights are used in the absence of a recipient user
context.<br>
# DO NOT SPECIFY A PRIVILEGED USER OR THE POSTFIX OWNER.<br>
#<br>
#default_privs = nobody<br>
<br>
# INTERNET HOST AND DOMAIN NAMES<br>
# <br>
# The myhostname parameter specifies the internet hostname of this<br>
# mail system. The default is to use the fully-qualified domain
name<br>
# from gethostname(). $myhostname is used as a default value for
many<br>
# other configuration parameters.<br>
#<br>
#myhostname = localhost <br>
myhostname = mail19.scom.ca<br>
<br>
# The mydomain parameter specifies the local internet domain name.<br>
# The default is to use $myhostname minus the first component.<br>
# $mydomain is used as a default value for many other
configuration<br>
# parameters.<br>
#<br>
#mydomain = localhost <br>
mydomain = mail19.scom.ca<br>
<br>
<br>
# SENDING MAIL<br>
# <br>
# The myorigin parameter specifies the domain that locally-posted<br>
# mail appears to come from. The default is to append $myhostname,<br>
# which is fine for small sites. If you run a domain with
multiple<br>
# machines, you should (1) change this to $mydomain and (2) set up<br>
# a domain-wide alias database that aliases each user to<br>
# <a class="moz-txt-link-abbreviated" href="mailto:user@that.users.mailhost">user@that.users.mailhost</a>.<br>
#<br>
# For the sake of consistency between sender and recipient
addresses,<br>
# myorigin also specifies the default domain name that is appended<br>
# to recipient addresses that have no @domain part.<br>
#<br>
myorigin = $myhostname<br>
#myorigin = $mydomain<br>
<br>
# RECEIVING MAIL<br>
<br>
# The inet_interfaces parameter specifies the network interface<br>
# addresses that this mail system receives mail on. By default,<br>
# the software claims all active interfaces on the machine. The<br>
# parameter also controls delivery of mail to user@[ip.address].<br>
#<br>
# See also the proxy_interfaces parameter, for network addresses
that<br>
# are forwarded to us via a proxy or network address translator.<br>
#<br>
# Note: you need to stop/start Postfix when this parameter
changes.<br>
#<br>
inet_interfaces = 127.0.0.1<br>
#inet_interfaces = $myhostname<br>
#inet_interfaces = $myhostname, localhost, 76.74.132.2<br>
#inet_interfaces = mail.dsl.scom.ca, dsl.scom.ca<br>
<br>
# The proxy_interfaces parameter specifies the network interface<br>
# addresses that this mail system receives mail on by way of a<br>
# proxy or network address translation unit. This setting extends<br>
# the address list specified with the inet_interfaces parameter.<br>
#<br>
# You must specify your proxy/NAT addresses when your system is a<br>
# backup MX host for other domains, otherwise mail delivery loops<br>
# will happen when the primary MX host is down.<br>
#<br>
#proxy_interfaces =<br>
#proxy_interfaces = 1.2.3.4<br>
<br>
# The mydestination parameter specifies the list of domains that
this<br>
# machine considers itself the final destination for.<br>
#<br>
# These domains are routed to the delivery agent specified with
the<br>
# local_transport parameter setting. By default, that is the UNIX<br>
# compatible delivery agent that lookups all recipients in
/etc/passwd<br>
# and /etc/aliases or their equivalent.<br>
#<br>
# The default is $myhostname + localhost.$mydomain. On a mail
domain<br>
# gateway, you should also include $mydomain.<br>
#<br>
# Do not specify the names of virtual domains - those domains are<br>
# specified elsewhere (see VIRTUAL_README).<br>
#<br>
# Do not specify the names of domains that this machine is backup
MX<br>
# host for. Specify those names via the relay_domains settings for<br>
# the SMTP server, or use permit_mx_backup if you are lazy (see<br>
# STANDARD_CONFIGURATION_README).<br>
#<br>
# The local machine is always the final destination for mail
addressed<br>
# to user@[the.net.work.address] of an interface that the mail
system<br>
# receives mail on (see the inet_interfaces parameter).<br>
#<br>
# Specify a list of host or domain names, /file/name or type:table<br>
# patterns, separated by commas and/or whitespace. A /file/name<br>
# pattern is replaced by its contents; a type:table is matched
when<br>
# a name matches a lookup key (the right-hand side is ignored).<br>
# Continue long lines by starting the next line with whitespace.<br>
#<br>
# See also below, section "REJECTING MAIL FOR UNKNOWN LOCAL
USERS".<br>
#<br>
#mydestination = $myhostname, localhost.$mydomain, localhost,
$mydomain<br>
#mydestination = $myhostname, localhost.$mydomain, localhost,
$mydomain,<br>
# mail.$mydomain, <a class="moz-txt-link-abbreviated" href="http://www.$mydomain">www.$mydomain</a>, <a class="moz-txt-link-abbreviated" href="ftp://ftp.$mydomain">ftp.$mydomain</a><br>
<br>
# REJECTING MAIL FOR UNKNOWN LOCAL USERS<br>
#<br>
# The local_recipient_maps parameter specifies optional lookup
tables<br>
# with all names or addresses of users that are local with respect<br>
# to $mydestination, $inet_interfaces or $proxy_interfaces.<br>
#<br>
# If this parameter is defined, then the SMTP server will reject<br>
# mail for unknown local users. This parameter is defined by
default.<br>
#<br>
# To turn off local recipient checking in the SMTP server, specify<br>
# local_recipient_maps = (i.e. empty).<br>
#<br>
# The default setting assumes that you use the default Postfix
local<br>
# delivery agent for local delivery. You need to update the<br>
# local_recipient_maps setting if:<br>
#<br>
# - You define $mydestination domain recipients in files other
than<br>
# /etc/passwd, /etc/aliases, or the $virtual_alias_maps files.<br>
# For example, you define $mydestination domain recipients in
<br>
# the $virtual_mailbox_maps files.<br>
#<br>
# - You redefine the local delivery agent in master.cf.<br>
#<br>
# - You redefine the "local_transport" setting in main.cf.<br>
#<br>
# - You use the "luser_relay", "mailbox_transport", or
"fallback_transport"<br>
# feature of the Postfix local delivery agent (see local(8)).<br>
#<br>
# Details are described in the LOCAL_RECIPIENT_README file.<br>
#<br>
# Beware: if the Postfix SMTP server runs chrooted, you probably
have<br>
# to access the passwd file via the proxymap service, in order to<br>
# overcome chroot restrictions. The alternative, having a copy of<br>
# the system passwd file in the chroot jail is just not practical.<br>
#<br>
# The right-hand side of the lookup tables is conveniently
ignored.<br>
# In the left-hand side, specify a bare username, an @domain.tld<br>
# wild-card, or specify a <a class="moz-txt-link-abbreviated" href="mailto:user@domain.tld">user@domain.tld</a> address.<br>
# <br>
local_recipient_maps = unix:passwd.byname $alias_maps<br>
#local_recipient_maps = proxy:unix:passwd.byname $alias_maps<br>
#local_recipient_maps =<br>
<br>
# The unknown_local_recipient_reject_code specifies the SMTP
server<br>
# response code when a recipient domain matches $mydestination or<br>
# ${proxy,inet}_interfaces, while $local_recipient_maps is
non-empty<br>
# and the recipient address or address local-part is not found.<br>
#<br>
# The default setting is 550 (reject mail) but it is safer to
start<br>
# with 450 (try again later) until you are certain that your<br>
# local_recipient_maps settings are OK.<br>
#<br>
#unknown_local_recipient_reject_code = 450 #Set by Mailscanner<br>
<br>
# TRUST AND RELAY CONTROL<br>
<br>
# The mynetworks parameter specifies the list of "trusted" SMTP<br>
# clients that have more privileges than "strangers".<br>
#<br>
# In particular, "trusted" SMTP clients are allowed to relay mail<br>
# through Postfix. See the smtpd_recipient_restrictions parameter<br>
# in postconf(5).<br>
#<br>
# You can specify the list of "trusted" network addresses by hand<br>
# or you can let Postfix do it for you (which is the default).<br>
#<br>
# By default (mynetworks_style = subnet), Postfix "trusts" SMTP<br>
# clients in the same IP subnetworks as the local machine.<br>
# On Linux, this does works correctly only with interfaces
specified<br>
# with the "ifconfig" command.<br>
# <br>
# Specify "mynetworks_style = class" when Postfix should "trust"
SMTP<br>
# clients in the same IP class A/B/C networks as the local
machine.<br>
# Don't do this with a dialup site - it would cause Postfix to
"trust"<br>
# your entire provider's network. Instead, specify an explicit<br>
# mynetworks list by hand, as described below.<br>
# <br>
# Specify "mynetworks_style = host" when Postfix should "trust"<br>
# only the local machine.<br>
# <br>
#mynetworks_style = class<br>
#mynetworks_style = subnet<br>
#mynetworks_style = host<br>
<br>
# Alternatively, you can specify the mynetworks list by hand, in<br>
# which case Postfix ignores the mynetworks_style setting.<br>
#<br>
# Specify an explicit list of network/netmask patterns, where the<br>
# mask specifies the number of bits in the network part of a host<br>
# address.<br>
#<br>
# You can also specify the absolute pathname of a pattern file
instead<br>
# of listing the patterns here. Specify type:table for table-based
lookups<br>
# (the value on the table right-hand side is not used).<br>
#<br>
mynetworks = 127.0.0.0/8 65.39.148.0/26 10.220.0.0/16
10.221.0.0/16<br>
#mynetworks = $config_directory/mynetworks<br>
#mynetworks = hash:/usr/local/etc/postfix/network_table<br>
# The relay_domains parameter restricts what destinations this
system will<br>
# relay mail to. See the smtpd_recipient_restrictions description
in<br>
# postconf(5) for detailed information.<br>
#<br>
# By default, Postfix relays mail<br>
# - from "trusted" clients (IP address matches $mynetworks) to any
destination,<br>
# - from "untrusted" clients to destinations that match
$relay_domains or<br>
# subdomains thereof, except addresses with sender-specified
routing.<br>
# The default relay_domains value is $mydestination.<br>
# <br>
# In addition to the above, the Postfix SMTP server by default
accepts mail<br>
# that Postfix is final destination for:<br>
# - destinations that match $inet_interfaces or $proxy_interfaces,<br>
# - destinations that match $mydestination<br>
# - destinations that match $virtual_alias_domains,<br>
# - destinations that match $virtual_mailbox_domains.<br>
# These destinations do not need to be listed in $relay_domains.<br>
# <br>
# Specify a list of hosts or domains, /file/name patterns or
type:name<br>
# lookup tables, separated by commas and/or whitespace. Continue<br>
# long lines by starting the next line with whitespace. A file
name<br>
# is replaced by its contents; a type:name table is matched when a<br>
# (parent) domain appears as lookup key.<br>
#<br>
# NOTE: Postfix will not automatically forward mail for domains
that<br>
# list this system as their primary or backup MX host. See the<br>
# permit_mx_backup restriction description in postconf(5).<br>
#<br>
relay_domains = $mydestination<br>
<br>
# INTERNET OR INTRANET<br>
<br>
# The relayhost parameter specifies the default host to send mail
to<br>
# when no entry is matched in the optional transport(5) table.
When<br>
# no relayhost is given, mail is routed directly to the
destination.<br>
#<br>
# On an intranet, specify the organizational domain name. If your<br>
# internal DNS uses no MX records, specify the name of the
intranet<br>
# gateway host instead.<br>
#<br>
# In the case of SMTP, specify a domain, host, host:port,
[host]:port,<br>
# [address] or [address]:port; the form [host] turns off MX
lookups.<br>
#<br>
# If you're connected via UUCP, see also the default_transport
parameter.<br>
#<br>
#relayhost = [gateway.my.domain]<br>
#relayhost = [mailserver.isp.tld]<br>
#relayhost = uucphost<br>
#relayhost = [an.ip.add.ress]<br>
# REJECTING UNKNOWN RELAY USERS<br>
#<br>
# The relay_recipient_maps parameter specifies optional lookup
tables<br>
# with all addresses in the domains that match $relay_domains.<br>
#<br>
# If this parameter is defined, then the SMTP server will reject<br>
# mail for unknown relay users. This feature is off by default.<br>
#<br>
# The right-hand side of the lookup tables is conveniently
ignored.<br>
# In the left-hand side, specify an @domain.tld wild-card, or
specify<br>
# a <a class="moz-txt-link-abbreviated" href="mailto:user@domain.tld">user@domain.tld</a> address.<br>
# <br>
#relay_recipient_maps =
hash:/usr/local/etc/postfix/relay_recipients<br>
<br>
# INPUT RATE CONTROL<br>
#<br>
# The in_flow_delay configuration parameter implements mail input<br>
# flow control. This feature is turned on by default, although it<br>
# still needs further development (it's disabled on SCO UNIX due<br>
# to an SCO bug).<br>
# <br>
# A Postfix process will pause for $in_flow_delay seconds before<br>
# accepting a new message, when the message arrival rate exceeds
the<br>
# message delivery rate. With the default 100 SMTP server process<br>
# limit, this limits the mail inflow to 100 messages a second more<br>
# than the number of messages delivered per second.<br>
# <br>
# Specify 0 to disable the feature. Valid delays are 0..10.<br>
# <br>
#in_flow_delay = 1s<br>
<br>
# ADDRESS REWRITING<br>
#<br>
# The ADDRESS_REWRITING_README document gives information about<br>
# address masquerading or other forms of address rewriting
including<br>
# username->Firstname.Lastname mapping.<br>
<br>
# ADDRESS REDIRECTION (VIRTUAL DOMAIN)<br>
#<br>
# The VIRTUAL_README document gives information about the many
forms<br>
# of domain hosting that Postfix supports.<br>
<br>
# "USER HAS MOVED" BOUNCE MESSAGES<br>
#<br>
# See the discussion in the ADDRESS_REWRITING_README document.<br>
<br>
# TRANSPORT MAP<br>
#<br>
# See the discussion in the ADDRESS_REWRITING_README document.<br>
<br>
# ALIAS DATABASE<br>
#<br>
# The alias_maps parameter specifies the list of alias databases
used<br>
# by the local delivery agent. The default list is system
dependent.<br>
#<br>
# On systems with NIS, the default is to search the local alias<br>
# database, then the NIS alias database. See aliases(5) for syntax<br>
# details.<br>
# <br>
# If you change the alias database, run "postalias /etc/aliases"
(or<br>
# wherever your system stores the mail alias file), or simply run<br>
# "newaliases" to build the necessary DBM or DB file.<br>
#<br>
# It will take a minute or so before changes become visible. Use<br>
# "postfix reload" to eliminate the delay.<br>
#<br>
#alias_maps = dbm:/etc/aliases<br>
alias_maps = hash:/usr/home/postfix/config/aliases<br>
#alias_maps = hash:/etc/aliases, nis:mail.aliases<br>
#alias_maps = netinfo:/aliases<br>
<br>
# The alias_database parameter specifies the alias database(s)
that<br>
# are built with "newaliases" or "sendmail -bi". This is a
separate<br>
# configuration parameter, because alias_maps (see above) may
specify<br>
# tables that are not necessarily all under control by Postfix.<br>
#<br>
#alias_database = dbm:/etc/aliases<br>
#alias_database = dbm:/etc/mail/aliases<br>
alias_database = hash:/etc/postfix/aliases<br>
#alias_database = hash:/etc/aliases, hash:/opt/majordomo/aliases<br>
<br>
# ADDRESS EXTENSIONS (e.g., user+foo)<br>
#<br>
# The recipient_delimiter parameter specifies the separator
between<br>
# user names and address extensions (user+foo). See canonical(5),<br>
# local(8), relocated(5) and virtual(5) for the effects this has
on<br>
# aliases, canonical, virtual, relocated and .forward file
lookups.<br>
# Basically, the software tries user+foo and .forward+foo before<br>
# trying user and .forward.<br>
#<br>
recipient_delimiter = +<br>
<br>
# DELIVERY TO MAILBOX<br>
#<br>
# The home_mailbox parameter specifies the optional pathname of a<br>
# mailbox file relative to a user's home directory. The default<br>
# mailbox file is /var/spool/mail/user or /var/mail/user. Specify<br>
# "Maildir/" for qmail-style delivery (the / is required).<br>
#<br>
#home_mailbox = Mailbox<br>
#home_mailbox = Maildir/<br>
<br>
# The mail_spool_directory parameter specifies the directory where<br>
# UNIX-style mailboxes are kept. The default setting depends on
the<br>
# system type.<br>
#<br>
#mail_spool_directory = /var/mail<br>
<br>
# The mailbox_command parameter specifies the optional external<br>
# command to use instead of mailbox delivery. The command is run
as<br>
# the recipient with proper HOME, SHELL and LOGNAME environment
settings.<br>
# Exception: delivery for root is done as $default_user.<br>
#<br>
# Other environment variables of interest: USER (recipient
username),<br>
# EXTENSION (address extension), DOMAIN (domain part of address),<br>
# and LOCAL (the address localpart).<br>
#<br>
# Unlike other Postfix configuration parameters, the
mailbox_command<br>
# parameter is not subjected to $parameter substitutions. This is
to<br>
# make it easier to specify shell syntax (see example below).<br>
#<br>
# Avoid shell meta characters because they will force Postfix to
run<br>
# an expensive shell process. Procmail alone is expensive enough.<br>
#<br>
# IF YOU USE THIS TO DELIVER MAIL SYSTEM-WIDE, YOU MUST SET UP AN<br>
# ALIAS THAT FORWARDS MAIL FOR ROOT TO A REAL USER.<br>
#<br>
#mailbox_command = /some/where/procmail<br>
#mailbox_command = /some/where/procmail -a "$EXTENSION"<br>
<br>
# The mailbox_transport specifies the optional transport in
master.cf<br>
# to use after processing aliases and .forward files. This
parameter<br>
# has precedence over the mailbox_command, fallback_transport and<br>
# luser_relay parameters.<br>
#<br>
# Specify a string of the form transport:nexthop, where transport
is<br>
# the name of a mail delivery transport defined in master.cf. The<br>
# :nexthop part is optional. For more details see the sample
transport<br>
# configuration file.<br>
#<br>
# NOTE: if you use this feature for accounts not in the UNIX
password<br>
# file, then you must update the "local_recipient_maps" setting in<br>
# the main.cf file, otherwise the SMTP server will reject mail
for <br>
# non-UNIX accounts with "User unknown in local recipient table".<br>
#<br>
mailbox_transport = dovecot <br>
<br>
# The fallback_transport specifies the optional transport in
master.cf<br>
# to use for recipients that are not found in the UNIX passwd
database.<br>
# This parameter has precedence over the luser_relay parameter.<br>
#<br>
# Specify a string of the form transport:nexthop, where transport
is<br>
# the name of a mail delivery transport defined in master.cf. The<br>
# :nexthop part is optional. For more details see the sample
transport<br>
# configuration file.<br>
#<br>
# NOTE: if you use this feature for accounts not in the UNIX
password<br>
# file, then you must update the "local_recipient_maps" setting in<br>
# the main.cf file, otherwise the SMTP server will reject mail
for <br>
# non-UNIX accounts with "User unknown in local recipient table".<br>
#<br>
#fallback_transport = lmtp:unix:/file/name<br>
#fallback_transport = cyrus<br>
#fallback_transport =<br>
<br>
# The luser_relay parameter specifies an optional destination
address<br>
# for unknown recipients. By default, mail for
unknown@$mydestination,<br>
# unknown@[$inet_interfaces] or unknown@[$proxy_interfaces] is
returned<br>
# as undeliverable.<br>
#<br>
# The following expansions are done on luser_relay: $user
(recipient<br>
# username), $shell (recipient shell), $home (recipient home
directory),<br>
# $recipient (full recipient address), $extension (recipient
address<br>
# extension), $domain (recipient domain), $local (entire recipient<br>
# localpart), $recipient_delimiter. Specify ${name?value} or<br>
# ${name:value} to expand value only when $name does (does not)
exist.<br>
#<br>
# luser_relay works only for the default Postfix local delivery
agent.<br>
#<br>
# NOTE: if you use this feature for accounts not in the UNIX
password<br>
# file, then you must specify "local_recipient_maps =" (i.e.
empty) in<br>
# the main.cf file, otherwise the SMTP server will reject mail
for <br>
# non-UNIX accounts with "User unknown in local recipient table".<br>
#<br>
#luser_relay = $user@other.host<br>
#luser_relay = $local@other.host<br>
#luser_relay = admin+$local<br>
<br>
# JUNK MAIL CONTROLS<br>
# <br>
# The controls listed here are only a very small subset. The file<br>
# SMTPD_ACCESS_README provides an overview.<br>
<br>
# The header_checks parameter specifies an optional table with
patterns<br>
# that each logical message header is matched against, including<br>
# headers that span multiple physical lines.<br>
#<br>
# By default, these patterns also apply to MIME headers and to the<br>
# headers of attached messages. With older Postfix versions, MIME
and<br>
# attached message headers were treated as body text.<br>
#<br>
# For details, see "man header_checks".<br>
#<br>
#header_checks = regexp:/usr/local/etc/postfix/header_checks<br>
#Divert to Hold Queue<br>
#header_checks = regexp:/etc/postfix/header_checks <br>
<br>
# FAST ETRN SERVICE<br>
#<br>
# Postfix maintains per-destination logfiles with information
about<br>
# deferred mail, so that mail can be flushed quickly with the SMTP<br>
# "ETRN domain.tld" command, or by executing "sendmail
-qRdomain.tld".<br>
# See the ETRN_README document for a detailed description.<br>
# <br>
# The fast_flush_domains parameter controls what destinations are<br>
# eligible for this service. By default, they are all domains that<br>
# this server is willing to relay mail to.<br>
# <br>
#fast_flush_domains = $relay_domains<br>
<br>
# SHOW SOFTWARE VERSION OR NOT<br>
#<br>
# The smtpd_banner parameter specifies the text that follows the
220<br>
# code in the SMTP server's greeting banner. Some people like to
see<br>
# the mail version advertised. By default, Postfix shows no
version.<br>
#<br>
# You MUST specify $myhostname at the start of the text. That is
an<br>
# RFC requirement. Postfix itself does not care.<br>
#<br>
#smtpd_banner = $myhostname ESMTP $mail_name<br>
#smtpd_banner = $myhostname ESMTP $mail_name ($mail_version)<br>
<br>
# PARALLEL DELIVERY TO THE SAME DESTINATION<br>
#<br>
# How many parallel deliveries to the same user or domain? With
local<br>
# delivery, it does not make sense to do massively parallel
delivery<br>
# to the same user, because mailbox updates must happen
sequentially,<br>
# and expensive pipelines in .forward files can cause disasters
when<br>
# too many are run at the same time. With SMTP deliveries, 10<br>
# simultaneous connections to the same domain could be sufficient
to<br>
# raise eyebrows.<br>
# <br>
# Each message delivery transport has its
XXX_destination_concurrency_limit<br>
# parameter. The default is
$default_destination_concurrency_limit for<br>
# most delivery transports. For the local delivery agent the
default is 2.<br>
<br>
#local_destination_concurrency_limit = 1 #2 <br>
#default_destination_concurrency_limit = 100 #20 <br>
<br>
# DEBUGGING CONTROL<br>
#<br>
# The debug_peer_level parameter specifies the increment in
verbose<br>
# logging level when an SMTP client or server host name or address<br>
# matches a pattern in the debug_peer_list parameter.<br>
#<br>
debug_peer_level = 9 <br>
<br>
# The debug_peer_list parameter specifies an optional list of
domain<br>
# or network patterns, /file/name patterns or type:name tables.
When<br>
# an SMTP client or server host name or address matches a pattern,<br>
# increase the verbose logging level by the amount specified in
the<br>
# debug_peer_level parameter.<br>
#<br>
#debug_peer_list = 127.0.0.1<br>
#debug_peer_list = some.domain<br>
<br>
# The debugger_command specifies the external command that is
executed<br>
# when a Postfix daemon program is run with the -D option.<br>
#<br>
# Use "command .. & sleep 5" so that the debugger can attach
before<br>
# the process marches on. If you use an X-based debugger, be sure
to<br>
# set up your XAUTHORITY environment variable before starting
Postfix.<br>
#<br>
debugger_command =<br>
PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin<br>
xxgdb $daemon_directory/$process_name $process_id &
sleep 5<br>
<br>
# If you can't use X, use this to capture the call stack when a<br>
# daemon crashes. The result is in a file in the configuration<br>
# directory, and is named after the process name and the process
ID.<br>
#<br>
# debugger_command =<br>
# PATH=/bin:/usr/bin:/usr/local/bin; export PATH; (echo
cont;<br>
# echo where) | gdb $daemon_directory/$process_name
$process_id 2>&1<br>
# >$config_directory/$process_name.$process_id.log &
sleep 5<br>
#<br>
# Another possibility is to run gdb under a detached screen
session.<br>
# To attach to the screen sesssion, su root and run "screen -r<br>
# <id_string>" where <id_string> uniquely matches one
of the detached<br>
# sessions (from "screen -list").<br>
#<br>
# debugger_command =<br>
# PATH=/bin:/usr/bin:/sbin:/usr/sbin; export PATH; screen<br>
# -dmS $process_name gdb $daemon_directory/$process_name<br>
# $process_id & sleep 1<br>
<br>
# INSTALL-TIME CONFIGURATION INFORMATION<br>
#<br>
# The following parameters are used when installing a new Postfix
version.<br>
# <br>
# sendmail_path: The full pathname of the Postfix sendmail
command.<br>
# This is the Sendmail-compatible mail posting interface.<br>
# <br>
sendmail_path = /usr/local/sbin/sendmail<br>
<br>
# newaliases_path: The full pathname of the Postfix newaliases
command.<br>
# This is the Sendmail-compatible command to build alias
databases.<br>
#<br>
newaliases_path = /usr/local/bin/newaliases<br>
<br>
# mailq_path: The full pathname of the Postfix mailq command.
This<br>
# is the Sendmail-compatible mail queue listing command.<br>
# <br>
mailq_path = /usr/local/bin/mailq<br>
<br>
# setgid_group: The group for mail submission and queue management<br>
# commands. This must be a group name with a numerical group ID
that<br>
# is not shared with other accounts, not even with the Postfix
account.<br>
#<br>
setgid_group = maildrop<br>
<br>
# html_directory: The location of the Postfix HTML documentation.<br>
#<br>
html_directory = no<br>
<br>
# manpage_directory: The location of the Postfix on-line manual
pages.<br>
#<br>
manpage_directory = /usr/local/man<br>
<br>
# sample_directory: The location of the Postfix sample
configuration files.<br>
# This parameter is obsolete as of Postfix 2.1.<br>
#<br>
#sample_directory = /usr/local/etc/postfix<br>
<br>
# readme_directory: The location of the Postfix README files.<br>
#<br>
#readme_directory = no<br>
<br>
#Auth Stuff<br>
smtpd_sasl_auth_enable = yes<br>
broken_sasl_auth_clients = yes <br>
smtpd_sasl_security_options = noanonymous<br>
smtpd_sasl_authenticated_header = yes<br>
smtpd_sasl_local_domain = $myhostname<br>
smtpd_sasl_path = smtpd<br>
<br>
smtpd_recipient_restrictions =<br>
permit_sasl_authenticated,<br>
permit_mynetworks<br>
reject_unauth_destination,<br>
#check_policy_service unix:private/policyd-spf<br>
<br>
<br>
#TLS Stuff<br>
#TLS Stuff<br>
#smtpd_tls_mandatory_protocols = !SSLv2,!SSLv3,!TLSv1<br>
#smtp_tls_mandatory_protocols = !SSLv2,!SSLv3,!TLSv1<br>
#smtpd_tls_protocols = !SSLv2,!SSLv3,!TLSv1<br>
#smtp_tls_protocols = !SSLv2,!SSLv3,!TLSv1<br>
<br>
smtpd_tls_exclude_ciphers = RC4, aNULL<br>
<br>
smtpd_tls_ask_ccert = yes<br>
<br>
smtpd_tls_security_level = may<br>
smtp_tls_security_level = may<br>
<br>
smtpd_tls_req_ccert = no<br>
<br>
smtpd_tls_auth_only = no<br>
<br>
smtpd_tls_loglevel = 2<br>
smtp_tls_loglevel = 2<br>
<br>
smtpd_use_tls = yes<br>
smtp_tls_chain_files = /etc/ssl/.scom.ca<br>
<br>
smtp_use_tls = yes<br>
smtp_tls_chain_files = /etc/ssl/.scom.ca<br>
<br>
smtpd_tls_session_cache_database =
btree:${queue_directory}/smtpd_scache<br>
smtp_tls_session_cache_database =
btree:${queue_directory}/smtp_scache<br>
<br>
smtp_tls_CApath = /etc/ssl/certs<br>
smtpd_tls_CApath = /etc/ssl/certs<br>
<br>
#Sort out hard bounce to softbounce<br>
smtp_reply_filter =
pcre:/usr/home/postfix.local/config/smtp_5xx_to_4xx<br>
<br>
<br>
#General Options<br>
delay_warning_time = 1h <br>
mailbox_size_limit = 0<br>
message_size_limit = 1000000000 <br>
<br>
<br>
#Mailscanner Options<br>
#header_checks = regexp:/usr/local/etc/postfix/header_checks <br>
<br>
unknown_local_recipient_reject_code = 550<br>
<br>
#Dovecot stuff<br>
<br>
<br>
#Postgres Stuff<br>
<br>
#Temp off till i am a mail server<br>
<br>
mydestination =
pgsql:/usr/home/postfix/config/pgsql-mydestination.cf<br>
virtual_maps=pgsql:/usr/home/postfix/config/pgsql-virtual.cf<br>
<br>
#Dovecot Stuff?<br>
dovecot_destination_recipient_limit = 1<br>
virtual_transport = dovecot<br>
<br>
<br>
<br>
<br>
#Spf filter<br>
#policy_time_limit = 3600<br>
<br>
#Other restrictions<br>
strict_rfc821_envelopes = yes<br>
<br>
smtpd_client_connection_count_limit = 1000<br>
<br>
default_process_limit = 100<br>
<br>
#minimal_backoff_time = 300s<br>
#maximal_backoff_time = 600s<br>
#queue_run_delay = 300s<br>
<br>
#Duplicate suppresion<br>
#enable_original_recipient = no<br>
#smtpd_discard_ehlo_keywords = silent-discard, dsn <br>
<br>
<br>
milter_default_action = accept<br>
milter_protocol = 6<br>
smtpd_milters = inet:localhost:8891<br>
non_smtpd_milters = inet:localhost:8891<br>
<br>
#virtual_mailbox_lock = dotlock<br>
<br>
<br>
Postfix Master.cf :<br>
<br>
[05:16:09] mail19.scom.ca [root:0] /usr/home/postfix.local/config<br>
# cat master.cf<br>
#<br>
# Postfix master process configuration file. For details on the
format<br>
# of the file, see the master(5) manual page (command: "man 5
master").<br>
#<br>
# Do not forget to execute "postfix reload" after editing this
file.<br>
#<br>
#
==========================================================================<br>
# service type private unpriv chroot wakeup maxproc command +
args<br>
# (yes) (yes) (yes) (never) (100)<br>
#
==========================================================================<br>
#smtp inet n - n - - smtpd<br>
#submission inet n - n - - smtpd<br>
#465 inet n - n - - smtpd<br>
#995 inet n - n - - smtpd<br>
61220 inet n - n - - smtpd<br>
# -o smtpd_tls_security_level=encrypt<br>
# -o smtpd_sasl_auth_enable=yes<br>
# -o smtpd_client_restrictions=permit_sasl_authenticated,reject<br>
# -o milter_macro_daemon_name=ORIGINATING<br>
#smtps inet n - n - - smtpd<br>
# -o smtpd_tls_wrappermode=yes<br>
# -o smtpd_sasl_auth_enable=yes<br>
# -o smtpd_client_restrictions=permit_sasl_authenticated,reject<br>
# -o milter_macro_daemon_name=ORIGINATING<br>
#628 inet n - n - - qmqpd<br>
pickup fifo n - n 60 1 pickup<br>
cleanup unix n - n - 0 cleanup<br>
qmgr fifo n - n 300 1 qmgr<br>
#qmgr fifo n - n 300 1 oqmgr<br>
tlsmgr unix - - n 1000? 1 tlsmgr<br>
rewrite unix - - n - -
trivial-rewrite<br>
bounce unix - - n - 0 bounce<br>
defer unix - - n - 0 bounce<br>
trace unix - - n - 0 bounce<br>
verify unix - - n - 1 verify<br>
flush unix n - n 1000? 0 flush<br>
proxymap unix - - n - - proxymap<br>
proxywrite unix - - n - 1 proxymap<br>
smtp unix - - n - - smtp<br>
# When relaying mail as backup MX, disable fallback_relay to avoid
MX loops<br>
relay unix - - n - - smtp<br>
-o smtp_fallback_relay=<br>
# -o smtp_helo_timeout=5 -o smtp_connect_timeout=5<br>
showq unix n - n - - showq<br>
error unix - - n - - error<br>
retry unix - - n - - error<br>
discard unix - - n - - discard<br>
local unix - n n - - local<br>
virtual unix - n n - - virtual<br>
lmtp unix - - n - - lmtp<br>
anvil unix - - n - 1 anvil<br>
scache unix - - n - 1 scache<br>
#<br>
#
====================================================================<br>
# Interfaces to non-Postfix software. Be sure to examine the
manual<br>
# pages of the non-Postfix software to find out what options it
wants.<br>
#<br>
# Many of the following services use the Postfix pipe(8) delivery<br>
# agent. See the pipe(8) man page for information about
${recipient}<br>
# and other message envelope options.<br>
#
====================================================================<br>
#<br>
# maildrop. See the Postfix MAILDROP_README file for details.<br>
# Also specify in main.cf: maildrop_destination_recipient_limit=1<br>
#<br>
#maildrop unix - n n - - pipe<br>
# flags=DRhu user=vmail argv=/usr/local/bin/maildrop -d
${recipient}<br>
#<br>
#
====================================================================<br>
#<br>
# The Cyrus deliver program has changed incompatibly, multiple
times.<br>
#<br>
#old-cyrus unix - n n - - pipe<br>
# flags=R user=cyrus argv=/usr/local/cyrus/bin/deliver -e -m
${extension} ${user}<br>
#<br>
#
====================================================================<br>
#<br>
# Cyrus 2.1.5 (Amos Gouaux)<br>
# Also specify in main.cf: cyrus_destination_recipient_limit=1<br>
#<br>
#cyrus unix - n n - - pipe<br>
# user=cyrus argv=/usr/local/cyrus/bin/deliver -e -r ${sender} -m
${extension} ${recipient} <br>
#<br>
#
====================================================================<br>
#<br>
# See the Postfix UUCP_README file for configuration details.<br>
#<br>
#uucp unix - n n - - pipe<br>
# flags=Fqhu user=uucp argv=uux -r -n -z -a$sender -
$nexthop!rmail ($recipient)<br>
#<br>
#
====================================================================<br>
#<br>
# Other external delivery methods.<br>
#<br>
#ifmail unix - n n - - pipe<br>
# flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop
($recipient)<br>
#<br>
#bsmtp unix - n n - - pipe<br>
# flags=Fq. user=bsmtp argv=/usr/local/sbin/bsmtp -f $sender
$nexthop $recipient<br>
#<br>
#scalemail-backend unix - n n - 2
pipe<br>
# flags=R user=scalemail
argv=/usr/lib/scalemail/bin/scalemail-store<br>
# ${nexthop} ${user} ${extension}<br>
#<br>
#mailman unix - n n - - pipe<br>
# flags=FR user=list
argv=/usr/lib/mailman/bin/postfix-to-mailman.py<br>
# ${nexthop} ${user}<br>
<br>
<br>
dovecot unix - n n - - pipe<br>
flags=DRhu user=vmail:vmail
argv=/usr/local/libexec/dovecot/deliver -f ${sender} -d
${recipient}<br>
<br>
policyd-spf unix - n n - - spawn<br>
user=nobody argv=/usr/local/bin/policyd-spf<br>
<br>
postlog unix-dgram n - n - 1 postlogd<br>
<br>
<br>
<br>
<br>
</font>
<div class="moz-signature"><font size="4" face="Courier New,
Courier, monospace">-- <br>
</font>
<font size="4" face="Courier New, Courier, monospace" color="blue">
<meta http-equiv="content-type" content="text/html;
charset=UTF-8">
<title></title>
<br>
<br>
Happy Monday !!!<br>
Thanks - paul<br>
<br>
Paul Kudla<br>
<br>
<br>
<a href="http://www.scom.ca"><img alt="Scom.ca Internet
Services" src="cid:part1.fsszFyk2.3AEn4XBV@scom.ca"
width="191" height="43" border="0"></a><br>
004-1009 Byron Street South<br>
Whitby, Ontario - Canada<br>
L1N 4S3<br>
<br>
Toronto 416.642.7266<br>
Main 1.866.411.7266<br>
Fax 1.888.892.7266
</font></div>
</body>
</html>