#87 [postfix] update main config file for postfix3 config
Merged 3 years ago by mobrien. Opened 3 years ago by mobrien.
Unknown source postfix3-infra8887  into  master

@@ -1,4 +1,3 @@

- # "false"

  # Global Postfix configuration file. This file lists only a subset

  # of all parameters. For the syntax, and for a complete parameter

  # list, see the postconf(5) manual page (command: "man 5 postconf").
@@ -6,11 +5,30 @@

  # For common configuration examples, see BASIC_CONFIGURATION_README

  # and STANDARD_CONFIGURATION_README. To find these documents, use

  # the command "postconf html_directory readme_directory", or go to

- # http://www.postfix.org/.

+ # http://www.postfix.org/BASIC_CONFIGURATION_README.html etc.

  #

  # For best results, change no more than 2-3 parameters at a time,

  # and test if Postfix still works after every change.

  

+ # COMPATIBILITY

+ #

+ # The compatibility_level determines what default settings Postfix

+ # will use for main.cf and master.cf settings. These defaults will

+ # change over time.

+ #

+ # To avoid breaking things, Postfix will use backwards-compatible

+ # default settings and log where it uses those old backwards-compatible

+ # default settings, until the system administrator has determined

+ # if any backwards-compatible default settings need to be made

+ # permanent in main.cf or master.cf.

+ #

+ # When this review is complete, update the compatibility_level setting

+ # below as recommended in the RELEASE_NOTES file.

+ #

+ # The level below is what should be used with new (not upgrade) installs.

+ #

+ compatibility_level = 2

+ 

  # SOFT BOUNCE

  #

  # The soft_bounce parameter provides a limited safety net for
@@ -42,6 +60,12 @@

  #

  daemon_directory = /usr/libexec/postfix

  

+ # The data_directory parameter specifies the location of Postfix-writable

+ # data files (caches, random numbers). This directory must be owned

+ # by the mail_owner account (see below).

+ #

+ data_directory = /var/lib/postfix

+ 

  # QUEUE AND PROCESS OWNERSHIP

  #

  # The mail_owner parameter specifies the owner of the Postfix queue
@@ -289,7 +313,7 @@

  # list this system as their primary or backup MX host. See the

  # permit_mx_backup restriction description in postconf(5).

  #

- #relay_domains = $mydestination

+ relay_domains = $mydestination

  

  

  
@@ -465,6 +489,8 @@

  # the main.cf file, otherwise the SMTP server will reject mail for    

  # non-UNIX accounts with "User unknown in local recipient table".

  #

+ # Cyrus IMAP over LMTP. Specify ``lmtpunix      cmd="lmtpd"

+ # listen="/var/imap/socket/lmtp" prefork=0'' in cyrus.conf.

  #mailbox_transport = lmtp:unix:/var/lib/imap/socket/lmtp

  

  # If using the cyrus-imapd IMAP server deliver local mail to the IMAP
@@ -485,9 +511,10 @@

  # can be used to take advantage of the single instance message store

  # capability of Cyrus. The concurrency limit can be used to control

  # how many simultaneous LMTP sessions will be permitted to the Cyrus

- # message store. 

+ # message store.

  #

- # To use the old cyrus deliver program you have to set:

+ # Cyrus IMAP via command line. Uncomment the "cyrus...pipe" and

+ # subsequent line in master.cf.

  #mailbox_transport = cyrus

  

  # The fallback_transport specifies the optional transport in master.cf
@@ -507,7 +534,6 @@

  #fallback_transport = lmtp:unix:/var/lib/imap/socket/lmtp

  #fallback_transport =

  

- #transport_maps = hash:/etc/postfix/transport

  # The luser_relay parameter specifies an optional destination address

  # for unknown recipients.  By default, mail for unknown@$mydestination,

  # unknown@[$inet_interfaces] or unknown@[$proxy_interfaces] is returned
@@ -616,7 +642,7 @@

  #

  debugger_command =

  	 PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin

- 	 xxgdb $daemon_directory/$process_name $process_id & sleep 5

+ 	 ddd $daemon_directory/$process_name $process_id & sleep 5

  

  # If you can't use X, use this to capture the call stack when a

  # daemon crashes. The result is in a file in the configuration
@@ -628,7 +654,7 @@

  #	>$config_directory/$process_name.$process_id.log & sleep 5

  #

  # Another possibility is to run gdb under a detached screen session.

- # To attach to the screen sesssion, su root and run "screen -r

+ # To attach to the screen session, su root and run "screen -r

  # <id_string>" where <id_string> uniquely matches one of the detached

  # sessions (from "screen -list").

  #
@@ -673,11 +699,11 @@

  # sample_directory: The location of the Postfix sample configuration files.

  # This parameter is obsolete as of Postfix 2.1.

  #

- sample_directory = /usr/share/doc/postfix-2.4.5/samples

+ sample_directory = /usr/share/doc/postfix/samples

  

  # readme_directory: The location of the Postfix README files.

  #

- readme_directory = /usr/share/doc/postfix-2.4.5/README_FILES

+ readme_directory = /usr/share/doc/postfix/README_FILES

  

  # add this to new postfix to get it to add proper message-id and other 

  # headers to outgoing emails via the gateway. 

@@ -795,3 +795,8 @@

  transport_maps = hash:/etc/postfix/transport

  local_header_rewrite_clients = static:all

  message_size_limit = 20971520

+ 

+ # smtpd_relay_restrictions are safer to use than smtpd_recipient_restrictions

+ # as outlined http://www.postfix.org/SMTPD_ACCESS_README.html

+ # At least one is required to receive email

+ smtpd_relay_restrictions = permit_mynetworks, reject_unauth_destination

@@ -5,12 +5,29 @@

  # For common configuration examples, see BASIC_CONFIGURATION_README

  # and STANDARD_CONFIGURATION_README. To find these documents, use

  # the command "postconf html_directory readme_directory", or go to

- # http://www.postfix.org/.

+ # http://www.postfix.org/BASIC_CONFIGURATION_README.html etc.

  #

  # For best results, change no more than 2-3 parameters at a time,

  # and test if Postfix still works after every change.

  

- # Custom rules

+ # COMPATIBILITY

+ #

+ # The compatibility_level determines what default settings Postfix

+ # will use for main.cf and master.cf settings. These defaults will

+ # change over time.

+ #

+ # To avoid breaking things, Postfix will use backwards-compatible

+ # default settings and log where it uses those old backwards-compatible

+ # default settings, until the system administrator has determined

+ # if any backwards-compatible default settings need to be made

+ # permanent in main.cf or master.cf.

+ #

+ # When this review is complete, update the compatibility_level setting

+ # below as recommended in the RELEASE_NOTES file.

+ #

+ # The level below is what should be used with new (not upgrade) installs.

+ #

+ compatibility_level = 2

  

  # SOFT BOUNCE

  #
@@ -145,8 +162,8 @@

  # compatible delivery agent that lookups all recipients in /etc/passwd

  # and /etc/aliases or their equivalent.

  #

- # The default is $myhostname + localhost.$mydomain.  On a mail domain

- # gateway, you should also include $mydomain.

+ # The default is $myhostname + localhost.$mydomain + localhost.  On

+ # a mail domain gateway, you should also include $mydomain.

  #

  # Do not specify the names of virtual domains - those domains are

  # specified elsewhere (see VIRTUAL_README).
@@ -478,6 +495,8 @@

  # the main.cf file, otherwise the SMTP server will reject mail for    

  # non-UNIX accounts with "User unknown in local recipient table".

  #

+ # Cyrus IMAP over LMTP. Specify ``lmtpunix      cmd="lmtpd"

+ # listen="/var/imap/socket/lmtp" prefork=0'' in cyrus.conf.

  #mailbox_transport = lmtp:unix:/var/lib/imap/socket/lmtp

  

  # If using the cyrus-imapd IMAP server deliver local mail to the IMAP
@@ -498,9 +517,10 @@

  # can be used to take advantage of the single instance message store

  # capability of Cyrus. The concurrency limit can be used to control

  # how many simultaneous LMTP sessions will be permitted to the Cyrus

- # message store. 

+ # message store.

  #

- # To use the old cyrus deliver program you have to set:

+ # Cyrus IMAP via command line. Uncomment the "cyrus...pipe" and

+ # subsequent line in master.cf.

  #mailbox_transport = cyrus

  

  
@@ -643,7 +663,7 @@

  #	>$config_directory/$process_name.$process_id.log & sleep 5

  #

  # Another possibility is to run gdb under a detached screen session.

- # To attach to the screen sesssion, su root and run "screen -r

+ # To attach to the screen session, su root and run "screen -r

  # <id_string>" where <id_string> uniquely matches one of the detached

  # sessions (from "screen -list").

  #
@@ -688,11 +708,11 @@

  # sample_directory: The location of the Postfix sample configuration files.

  # This parameter is obsolete as of Postfix 2.1.

  #

- sample_directory = /usr/share/doc/postfix-2.5.6/samples

+ sample_directory = /usr/share/doc/postfix/samples

  

  # readme_directory: The location of the Postfix README files.

  #

- readme_directory = /usr/share/doc/postfix-2.5.6/README_FILES

+ readme_directory = /usr/share/doc/postfix/README_FILES

  # Enable IPv4, and IPv6 if supported

  #inet_protocols = ipv4

  
@@ -749,3 +769,7 @@

  # Deny email from some domains

  smtpd_sender_restrictions = regexp:/etc/postfix/sender_access

  

+ # smtpd_relay_restrictions are safer to use than smtpd_recipient_restrictions

+ # as outlined http://www.postfix.org/SMTPD_ACCESS_README.html

+ # At least one is required to receive email

+ smtpd_relay_restrictions = permit_mynetworks, reject_unauth_destination

no initial comment

rebased onto bde7a5b205639ddc85c17e2b069aaadd51fb32af

3 years ago

rebased onto bde7a5b205639ddc85c17e2b069aaadd51fb32af

3 years ago

This updates the default main.cf file for postfix3 compatibility. It may be necessary to do the other main.cf files but I am unsure which are rhel7/8

Build succeeded.

The most important one is the .gateway one... thats the one that runs on bastion01/02 and handles incoming/outgoing emails.

rebased onto 8cbb1dd06fe7d127059dbec8eb75d52b6c353679

3 years ago

rebased onto 8cbb1dd06fe7d127059dbec8eb75d52b6c353679

3 years ago

2 new commits added

  • Merge branch 'postfix3-infra8887' of ssh://pagure.io/forks/mobrien/fedora-infra/ansible into postfix3-infra8887
  • [postfix] update gateway conf for postfix3
3 years ago

@kevin I added in the gateway one. I can do the rest as necessary but it may be best to run at least one before I change them all.

Build failed.

Build succeeded.

recheck

Thanks @nphilipp is there a way for me to kick this off myself in future?

@mobrien I believe the same should work for you, but I'm new to this Zuul CI thing, too. Try it out?

Yeah, not much change here... but looks fine to me. :)

Feel free to merge and I can push it out.

Metadata Update from @nphilipp:
- Request assigned

3 years ago

rebased onto c8e322e

3 years ago

rebased onto c8e322e

3 years ago

Pull-Request has been merged by mobrien

3 years ago