Postfix & Amavis – Page 2 – Up level work support of Linux servers. Modern Clouds – architecture, deploy and maintenance.

Postfix: A self signed certificate or CSR.

To create a certificate to be used by Postfix use:

openssl req -new -x509 -days 3650 -nodes -out /etc/ssl/certs/postfix.pem -keyout /etc/ssl/private/postfix.pem

“Postfix: A self signed certificate or CSR.”Continue reading

SASL authentication and Postfix

Next options require attention:

smtpd_sasl_auth_enable = yes
smtpd_sasl_authenticated_header = no
smtpd_sasl_exceptions_networks =
smtpd_sasl_local_domain =
smtpd_sasl_path = 
smtpd_sasl_security_options = noanonymous, noplaintext
smtpd_sasl_tls_security_options = noanonymous, noplaintext
smtpd_sasl_type = cyrus

/etc/postfix/main.cf:
    smtpd_sasl_type = dovecot | cyrus
/etc/postfix/main.cf:
    smtpd_sasl_path = private/auth

This example uses a pathname relative to the Postfix queue directory, so that
it will work whether or not the Postfix SMTP server runs chrooted.Regardless of the
SASL implementation type, enabling SMTP authentication in the Postfix SMTP server
always requires setting the smtpd_sasl_auth_enable option:

“SASL authentication and Postfix”Continue reading

Protected: How to Postfix effectively blocks spam on config level.

Protected: How to use postfix and policyd daemon.