Ceci est une ancienne révision du document !
Table des matières
Postfix
MTA, Service SMTP
Tips
Restrictions
Difference entre smtpd_client_restrictions et smtpd_recipient_restrictions
`client' est le nom de la machine qui se connecte au serveur Postfix (le client SMTP). On peut restreindre l'accès selon certains critères.
`recipient' est l'adresse du destinataire dans l'enveloppe du message. On peut restreindre l'accès selon d'autres critères.
Les restrictions correspondent grosso-modo à l'ordre des commandes SMTP : (client) HELO, MAIL FROM, RCPT TO, DATA.
Il faut savoir que, par défaut, Postfix applique les restrictions listées uniquement à l'étape RCPT TO, même si une règle aurait arrêté la connexion avant. Il est donc possible de mettre toutes les restrictions dans la variable `smtpd_recipient_restrictions'.
Stats tools
Mailgraph: a RRDtool frontend for Mail statistics:
Pflogsumm: The Postfix Log Entry Summarizer
Isoqlog: Isoqlog is an MTA log analysis program written in C. It designed to scan qmail, postfix, sendmail and exim logfile and produce usage statistics in HTML format for viewing through a browser. It produces Top domains output according to Sender, Receiver, Total mails and bytes; it keeps your main domain mail statistics with regard to Days Top Domain, Top Users values for per day, per month and years.
Dovecot SASL configuration for the Postfix SMTP server
In order to enable SASL support in the Postfix SMTP server:
/etc/postfix/main.cf: smtpd_sasl_auth_enable = yes
In order to allow mail relaying by authenticated remote SMTP clients:
/etc/postfix/main.cf: smtpd_recipient_restrictions = permit_mynetworks permit_sasl_authenticated reject_unauth_destination
Dovecot SASL support is available in Postfix 2.3 and later. On the Postfix side you need to specify the location of the Dovecot authentication daemon socket. We use a pathname relative to the Postfix queue directory, so that it will work whether or not the Postfix SMTP server runs chrooted:
/etc/postfix/main.cf: smtpd_sasl_type = dovecot smtpd_sasl_path = private/auth
On the Dovecot side you also need to specify the Dovecot authentication daemon socket. In this case we specify an absolute pathname. In the example we assume that the Postfix queue is under /var/spool/postfix/.
/some/where/dovecot.conf: auth default { mechanisms = plain login passdb pam { } userdb passwd { } socket listen { client { path = /var/spool/postfix/private/auth mode = 0660 user = postfix group = postfix } } }
See the Dovecot documentation for how to configure and operate the Dovecot authentication server.
Non-Unix users
SpamAssassin et ClamAV
La clé c'est : amavisd-new
http://www.drakonix.fr/?id=3&page=27
http://www.section6.net/wiki/index.php/Setting_up_Postfix_Spamassassin_Amavisd_Clamav
http://www.freespamfilter.org/FC4.html#_Toc110999194
http://www.ijs.si/software/amavisd/amavisd-new-docs.html
http://www.scalix.com/wiki/index.php?title=HowTos/Amavisd#Configuring_amavisd-new