A little addition to Setting up a mail server. Mentioned a man page for reject_multi_recipient_bounce and reject_unauth_pipelining.
This commit is contained in:
parent
f70f883943
commit
2ddbdb1c3a
@ -209,7 +209,7 @@ block article
|
|||||||
| reject_non_fqdn_recipient
|
| reject_non_fqdn_recipient
|
||||||
p In order to explain what every restriction does I'd have to copy-paste from #[code man 5 postconf]. :)
|
p In order to explain what every restriction does I'd have to copy-paste from #[code man 5 postconf]. :)
|
||||||
p The first set of restrictions are for HELO or EHLO command, that we force the client to send with priorly set option #[code smtpd_helo_required] to yes. Here #[code reject_unknown_helo_hostname] rejects hostnames that doesn't have DNS A or MX records. #[code reject_invalid_helo_hostname] rejects malformed hostnames, and #[code reject_non_fqdn_helo_hostname] ensures that the hostname is a fully-qualified domain name.
|
p The first set of restrictions are for HELO or EHLO command, that we force the client to send with priorly set option #[code smtpd_helo_required] to yes. Here #[code reject_unknown_helo_hostname] rejects hostnames that doesn't have DNS A or MX records. #[code reject_invalid_helo_hostname] rejects malformed hostnames, and #[code reject_non_fqdn_helo_hostname] ensures that the hostname is a fully-qualified domain name.
|
||||||
p The second one are for DATA command. And here man page is better than me at explaining it. Here is the link for #[a(href='http://www.postfix.org/postconf.5.html#reject_multi_recipient_bounce') reject_multi_recipient_bounce] and #[a(href='http://www.postfix.org/postconf.5.html#reject_unauth_pipelining') reject_unauth_pipelining]. All I can say is that it is better to have them than not to. :)
|
p The second one are for DATA command. And here man page is better than me at explaining it. Here is the link for #[a(href='http://www.postfix.org/postconf.5.html#reject_multi_recipient_bounce') reject_multi_recipient_bounce] and #[a(href='http://www.postfix.org/postconf.5.html#reject_unauth_pipelining') reject_unauth_pipelining]. Or just look them up in #[code man 5 postconf]. All I can say is that it is better to have them than not to. :)
|
||||||
p The rest is simpler, #[code permit_sasl_authenticated] in #[code smtpd_sender_restrictions] accepts the senders that were authenticated by SASL (e.g. Dovecot or Cyrus). And all the #[code reject_unknown_*] and #[code reject_non_fqdn_*] has the same meaning as for theirs *_helo_* counterparts, just used in theirs specific places.
|
p The rest is simpler, #[code permit_sasl_authenticated] in #[code smtpd_sender_restrictions] accepts the senders that were authenticated by SASL (e.g. Dovecot or Cyrus). And all the #[code reject_unknown_*] and #[code reject_non_fqdn_*] has the same meaning as for theirs *_helo_* counterparts, just used in theirs specific places.
|
||||||
|
|
||||||
h4#art-3-2 #[a(href='#art-3-2') 3.2. master.cf]
|
h4#art-3-2 #[a(href='#art-3-2') 3.2. master.cf]
|
||||||
|
Loading…
Reference in New Issue
Block a user