|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: MrC (lists-postfix
cappella.us)
Date: Sun Jul 15 2007 - 14:01:43 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Joshua Baer wrote:
>
> On Jul 14, 2007, at 11:54 PM, MrC wrote:
>
>> Joshua Baer wrote:
>>> Howdy,
>>> I'm fairly new to postfix but familiar with mail systems in general.
>>> I'd like to set up a configuration that will:
>>> - accept mail for any domain *.mydomain.com
>>> - have a single catchall address that collects all the messages
>>
>> Be prepared to receive loads of spam as the dictionary attacks will be
>> endless. Wildcarding is not recommended.
>
> Thanks for the recommendation! That's my experience as well. This is for
> a very special case situation but I do understand the concern. I'm
> hoping that since this will be primarily for the subdomains that it
> won't be much of an issue (later on down the road I can figure out how
> to turn off the catchall for the TLD but leave it on for the subdomains)
>
>>
>>> For example, my server could be mail.mydomain.com. It would accept
>>> emails for applejosh.mydomain.com, orangebob.mydomain.com, and
>>> bananageorge.mydomain.com. All 3 of those messages would be routed
>>> to the same unix user's mailbox file.
>>
>> By default, postfix delivers email to valid (eg: listed) recipients.
>> To override that behavior, you can set luser_relay, and clear
>> local_recipient_maps:
>>
>> main.cf:
>> luser_relay = local_user_name
>> local_recipient_maps =
>>
>> See:
>>
>> http://www.postfix.org/LOCAL_RECIPIENT_README.html#main_config
>>
>
>
> Thanks! That seems to work. I had found the local_recipient_maps but was
> missing the luser_relay setting.
>
>
>>
>>> I have looked through the documentation and searched the archives,
>>> but I can't find any mention of wildcards in the mydestination
>>> section or in the aliases file. I see how to do a catchall in a
>>> virtual domain, but I don't want to have to make a new virtual domain
>>> for every subdomain.
>>
>> You don't need to create catchalls for each subdomain. Read the
>> description under EMAIL ADDRESS PATTERNS in:
>>
>> http://www.postfix.org/access.5.html
>>
>
> I've looked this over but am having trouble getting it to work. I put
> this line in main.cf (tried both above and below the mydestination
> setting).
>
> smtpd_client_restrictions =
> check_client_access hash:/private/etc/postfix/access
>
> Then I added this one line to the top of the otherwise empty access file:
>
> .mydomain.com OK
>
> Finally, I ran postmap /private/etc/postfix/access
>
I presume you are using postmap to test?
Postmap does not completely duplicate the running postfix environment.
It will not match subdomains in your postmap -q access queries, but
postfix will match during the SMTP dialog.
If you have the default parent_domain_matches_subdomains which includes
smtpd_access_maps, then all you need in your access map is:
mydomain.com OK
To protect yourself in the future if/when
parent_domain_matches_subdomains takes on more restrictive settings,
adding the specific :
.mydomain.com OK
is probably wise.
MrC
>
> Any idea what I'm missing?
>
> ~Josh
>
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]