Ceci est une ancienne révision du document !
Table des matières
Postfix
MTA, Service SMTP
Tips
Restrictions
Difference entre smtpd_client_restrictions et smtpd_recipient_restrictions
`client' est le nom de la machine qui se connecte au serveur Postfix (le client SMTP). On peut restreindre l'accès selon certains critères.
`recipient' est l'adresse du destinataire dans l'enveloppe du message. On peut restreindre l'accès selon d'autres critères.
Les restrictions correspondent grosso-modo à l'ordre des commandes SMTP : (client) HELO, MAIL FROM, RCPT TO, DATA.
Il faut savoir que, par défaut, Postfix applique les restrictions listées uniquement à l'étape RCPT TO, même si une règle aurait arrêté la connexion avant. Il est donc possible de mettre toutes les restrictions dans la variable `smtpd_recipient_restrictions'.
Stats tools
Mailgraph - a RRDtool frontend for Mail statistics: http://mailgraph.schweikert.ch/
Pflogsumm - The Postfix Log Entry Summarizer: https://calomel.org/pflogsumm.html
Dovecot SASL configuration for the Postfix SMTP server
In order to enable SASL support in the Postfix SMTP server:
/etc/postfix/main.cf: smtpd_sasl_auth_enable = yes
In order to allow mail relaying by authenticated remote SMTP clients:
/etc/postfix/main.cf: smtpd_recipient_restrictions = permit_mynetworks permit_sasl_authenticated reject_unauth_destination
Dovecot SASL support is available in Postfix 2.3 and later. On the Postfix side you need to specify the location of the Dovecot authentication daemon socket. We use a pathname relative to the Postfix queue directory, so that it will work whether or not the Postfix SMTP server runs chrooted:
/etc/postfix/main.cf: smtpd_sasl_type = dovecot smtpd_sasl_path = private/auth
On the Dovecot side you also need to specify the Dovecot authentication daemon socket. In this case we specify an absolute pathname. In the example we assume that the Postfix queue is under /var/spool/postfix/.
/some/where/dovecot.conf: auth default { mechanisms = plain login passdb pam { } userdb passwd { } socket listen { client { path = /var/spool/postfix/private/auth mode = 0660 user = postfix group = postfix } } }
See the Dovecot documentation for how to configure and operate the Dovecot authentication server.
Non-Unix users
SpamAssassin et ClamAV
La clé c'est : amavisd-new
http://www.drakonix.fr/?id=3&page=27
http://www.section6.net/wiki/index.php/Setting_up_Postfix_Spamassassin_Amavisd_Clamav
http://www.freespamfilter.org/FC4.html#_Toc110999194
http://www.ijs.si/software/amavisd/amavisd-new-docs.html
http://www.scalix.com/wiki/index.php?title=HowTos/Amavisd#Configuring_amavisd-new