OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: Bennett Todd (bet_at_rahul.net)
Date: Thu Jan 02 2003 - 08:20:56 CST

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    2002-12-31T17:51:51 Victor.Duchovnimorganstanley.com:
    > Why do you think you have virtual users. Stop thinking about virtual users
    > and domains and your brain will hurt less. Your users are "local".
    >
    > For local delivery via procmail read sample-local.cf.

    To expand on Viktor's comment, in this group's evolved jargon a
    "virtual user" is one that doesn't have a distinct Unix system
    account associated with it. It doesn't have a distinct userid
    number. It can only be delivered to by a virtual delivery agent, one
    that has a private database it can refer to, that indicates what
    permissions and what mailbox location to use for delivering to that
    user. This is a popular setup for big mailservers, but is not
    typical for small simple ones. As far as I know, procmail doesn't
    have the necessary support to be used as a virtual delivery agent.
    Three virtual delivery agents are commonly used: the virtual(8)
    agent built in to recent versions of Postfix; maildrop; and Cyrus.
    You aren't doing any of those.

    You have real local users, with real local userids associated with
    their real local system accounts on your mailserver. You want to use
    Postfix's local(8) delivery agent. Since you want to deliver with
    procmail, you want something like

            mailbox_command = /usr/bin/procmail

    in your main.cf. And if you have "virtual domains", i.e. cases where
    local accounts can be addressed by addresses in other domains (your
    hostname is foo.example.net, you have a real user, with system
    account "fred", who has a virtual email address barexample.com)
    you'd use virtual(5), the virtual aliases table, to rewrite those
    addresses into your local domain. For the above example,

            barexample.com fredfoo.example.net

    Remember, virtual users don't have system accounts; procmail can't
    (AFAIK) be used for them. Real accounts are real users; if you want
    to give them aliases in other domains, those can be implemented with
    the virtual(5) table.

    -Bennett

    -----BEGIN PGP SIGNATURE-----
    Version: GnuPG v1.0.7 (GNU/Linux)

    iD8DBQE+FErIHZWg9mCTffwRAjM5AJ9QasdBy7XhYpkJcayQY4czFdGLXACfcQ+T
    8Plo4wMBsklBhmXQZZLHqOQ=
    =doOz
    -----END PGP SIGNATURE-----