majic-ansible-roles Files · roles/mail_forwarder/templates/main.cf.j2

Files @ 17cf34f73ca6

Branch filter:

Location: majic-ansible-roles/roles/mail_forwarder/templates/main.cf.j2 - annotation

17cf34f73ca6 1.4 KiB text/plain Show Source Show as Raw Download as Raw

branko

MAR-28: Implemented additional tests for mail_server role:

- Deploy a number of tools on clients in order to test SMTP, IMAP, and Sieve
services.
- Added one more user to LDAP directory for testing group restrictions.
- Deploy CA certificate on all testing machines for TLS validation purposes.
- Use different custom-configured cipher for mail server ciphers.
- Fixed invalid postmaster address for parameters-optional host.
- Deploy configuration files for use with Imap-CLI on client test machines.
- Updated testing of SMTP server to include checks for users that do not belong
to mail group.
- Extended some SMTP-related tests to cover both test servers.
- Some small fixes in SMTP-related tests for expected output from commands.
- Implemented tests covering Dovecot (IMAP + Sieve) functionality.
- Implemented tests for running/enabled services.
- Implemented tests for ClamAV.
- Implemented tests for firewall and connectivity.
- Implemented tests for Postfix TLS configuration.
- TODO: Tests for Sieve TLS configuration have not been written yet due to
limitation of available tools.

7ab6518de03b
7ab6518de03b
7ab6518de03b
7ab6518de03b
7ab6518de03b
7ab6518de03b
7ab6518de03b
7ab6518de03b
7ab6518de03b
7ab6518de03b
7ab6518de03b
7ab6518de03b
7ab6518de03b
7ab6518de03b
7ab6518de03b
7ab6518de03b
7ab6518de03b
7ab6518de03b
7ab6518de03b
7ab6518de03b
7ab6518de03b
7ab6518de03b
7ab6518de03b
7ab6518de03b
7ab6518de03b
13fd27e4004c
2285dcdda345
32f61f233098
13fd27e4004c
7ab6518de03b
7ab6518de03b
7ab6518de03b
7ab6518de03b
3a9692d96170
7ab6518de03b
7ab6518de03b
7ab6518de03b
7ab6518de03b
7ab6518de03b
9a5d1122146f
7ab6518de03b
7ab6518de03b
7ab6518de03b

# See /usr/share/postfix/main.cf.dist for a commented, more complete version


# Debian specific:  Specifying a file name will cause the first
# line of that file to be used as the name.  The Debian default
# is /etc/mailname.
#myorigin = /etc/mailname

smtpd_banner = $myhostname ESMTP $mail_name (Debian/GNU)
biff = no

# appending .domain is the MUA's job.
append_dot_mydomain = no

# Uncomment the next line to generate "delayed mail" warnings
#delay_warning_time = 4h

readme_directory = no

# TLS parameters
smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem
smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key
smtpd_use_tls=yes
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
{% if smtp_relay_host %}
smtp_tls_security_level=verify
smtp_tls_CAfile=/etc/ssl/certs/smtp_relay_truststore.pem
{% endif %}

# See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for
# information on enabling SSL in the smtp client.

myhostname = {{ inventory_hostname }}
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
myorigin = /etc/mailname
mydestination = {{ inventory_hostname }}, {{ inventory_hostname_short }}, localhost.localdomain, localhost
relayhost = {{ smtp_relay_host }}
mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128
mailbox_command = procmail -a "$EXTENSION"
mailbox_size_limit = 0
recipient_delimiter = +