Changeset - 08e3c2b79063
Parent rev.
Child rev.
[Not reviewed]
0 1 0
Branko Majic (branko) - 9 years ago 2015-04-07 23:02:29
branko@majic.rs
MAR-4: Updated mail server role, removing some redundant settings for TLS key/cert and moving some TLS settings a bit.
1 file changed with 3 insertions and 7 deletions:
roles/mail_server/templates/main.cf.j2
3
7
0 comments (0 inline, 0 general)
roles/mail_server/templates/main.cf.j2
Show inline comments
 
@@ -17,13 +17,6 @@ append_dot_mydomain = no
 

			




	
	
	
		
 
readme_directory = no

			




	
	
	
		
 

			




	
	
	
		
 
# TLS parameters

			




	
	
	
		
 
smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem

			




	
	
	
		
 
smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key

			




	
	
	
		
 
smtpd_use_tls=yes

			




	
	
	
		
 
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache

			




	
	
	
		
 
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache

			




	
	
	
		
 

			




	
	
	
		
 
# See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for

			




	
	
	
		
 
# information on enabling SSL in the smtp client.

			




	
	
	
		
 

			




	
	
		
 
@@ -59,6 +52,9 @@ smtpd_tls_security_level = may

			




	
	
	
		
 
smtpd_tls_auth_only = yes

			




	
	
	
		
 
smtpd_tls_cert_file = {{ smtp_tls_certificate }}

			




	
	
	
		
 
smtpd_tls_key_file = {{ smtp_tls_key }}

			




	
	
	
		
 
smtpd_use_tls=yes

			




	
	
	
		
 
smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache

			




	
	
	
		
 
smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache

			




	
	
	
		
 

			




	
	
	
		
 
# Recipients restricting.

			




	
	
	
		
 
smtpd_recipient_restrictions = permit_mynetworks

			




        

    



    


    



    



      

      





    
    0 comments (0 inline, 0 general)
    





    


  

  







  


    




    








    
        
    
    
        This site is powered by
            Kallithea 0.7.0,
        which is
        © 2010–2023 by various authors & licensed under GPLv3.