Перейти из форума на сайт.

НовостиФайловые архивы
ПоискАктивные темыТоп лист
ПравилаКто в on-line?
Вход Забыли пароль? Первый раз на этом сайте? Регистрация
Компьютерный форум Ru.Board » Компьютеры » В помощь системному администратору » FAQ по Exim MTA

Модерирует : lynx, Crash_Master, dg, emx, ShriEkeR

ShriEkeR (16-05-2011 18:50): FAQ по Exim MTA #2  Версия для печати • ПодписатьсяДобавить в закладки
На первую страницук этому сообщениюк последнему сообщению

   

fly_house



Full Member
Редактировать | Профиль | Сообщение | ICQ | Цитировать | Сообщить модератору

CONFIG_PREFIX=/usr/local/etc/exim
ACL_PREFIX=CONFIG_PREFIX/acls
CERTDIR=CONFIG_PREFIX/certs
 
 primary_hostname = bdo-balance.dp.ua
 
domainlist local_domains = bdo-balance.dp.ua : bbb.com.ua : bbb.dp.ua : mail.bdo-balance.dp.ua
domainlist relay_to_domains =
hostlist host_reject = acls/hostreject
hostlist   relay_from_hosts = localhost : 192.168.0.0/16
 
acl_smtp_rcpt = acl_check_rcpt
acl_smtp_data = acl_check_virus
acl_smtp_mime = acl_check_mime
 
av_scanner = clamd:/var/run/clamav/clamd
spamd_address = 127.0.0.1 783
 
never_users = root
 
host_lookup = *
 
rfc1413_query_timeout = 0s
 
ignore_bounce_errors_after = 2d
 
 
timeout_frozen_after = 7d
 
message_size_limit = 10M
accept_8bitmime
 
tls_certificate = CERTDIR/mailed.crt
tls_privatekey = CERTDIR/mailed.key
tls_advertise_hosts = *
tls_verify_certificates = *
 
auth_advertise_hosts = ${if eq{$tls_cipher}{}{}{*}}
log_selector = +all
 
 
######################################################################
#                       ACL CONFIGURATION                            #
#         Specifies access control lists for incoming SMTP mail      #
######################################################################
 
begin acl
acl_check_rcpt:
 
  # Accept if the source is local SMTP (i.e. not over TCP/IP). We do this by
  # testing for an empty sending host field.
 
  accept  hosts = 192.168.0.0/16
 
  deny    message       = Restricted characters in address
          domains       = +local_domains
          local_parts   = ^[.] : ^.*[@%!/|]
    accept domains      = +local_domains
 
  deny    message       = Go Away! You are spammer.
         condition     = ${if match{$sender_host_name} \
                     {bezeqint\\.net|net\\.il|dialup|dsl|pool|peer|dhcp|cable|ppp|pppoe} \
                               {yes}{no}}
 
 
 
 
    deny message = rejected because \
    $sender_host_address is in a black list at $dnslist_domain\n$dnslist_text
    !authenticated = *
    dnslists = relays.ordb.org : dnsbl.njabl.org : bl.spamcop.net : sbl.spamhaus.org : list.dsbl.org : cbl.abuseat.org
 
 
 
  deny    message       = Restricted characters in address
          domains       = !+local_domains
          local_parts   = ^[./|] : ^.*[@%!] : ^.*/\\.\\./
 
  accept  local_parts   = postmaster
          domains       = +local_domains
 
 
  require verify        = sender
 
  accept  hosts         = +relay_from_hosts
          control       = submission
 
 
  accept  authenticated = *
          control       = submission
 
 
acl_check_mime:
     warn decode = default
     deny message = Blacklisted file extension detected
     condition = ${if match \
                     {${lc:$mime_filename}} \
                     {\N(\.wav|\.cpl|\.pif|\.bat|\.scr|\.lnk|\.exe|\.vbs|\.com)$\N} \
                  {1}{0}}
    deny message = Sorry, noone speaks chinese here
       condition = ${if eq{$mime_charset}{gb2312}{1}{0}}
 
 accept
 
 
  accept  domains       = +local_domains
          endpass
          verify        = recipient
 
 
  accept  domains       = +relay_to_domains
          endpass
          verify        = recipient
 
 
  deny    message       = relay not permitted
 
 
 
acl_check_virus:
 
    deny  message   = Message rejected: virus found. Your message was successfully trashed.
          hosts         = *
          malware       = *
 
 
 
 accept
 
 
 
######################################################################
#                      ROUTERS CONFIGURATION                         #
#               Specifies how addresses are handled                  #
######################################################################
#     THE ORDER IN WHICH THE ROUTERS ARE DEFINED IS IMPORTANT!       #
# An address is passed to each router in turn until it is accepted.  #
######################################################################
 
begin routers
 
dnslookup:
  driver = dnslookup
  domains = ! +local_domains
  transport = remote_smtp
  ignore_target_hosts = 0.0.0.0 : 127.0.0.0/8
  no_more
 
 
system_aliases:
  driver = redirect
  allow_fail
  allow_defer
  data = ${lookup{$local_part}lsearch{/etc/aliases}}
  user = mailnull
  group = mail
  file_transport = address_file
  pipe_transport = address_pipe
 
 
 
userforward:
  driver = redirect
  check_local_user
# local_part_suffix = +* : -*
# local_part_suffix_optional
  file = $home/.forward
# allow_filter
  no_verify
  no_expn
  check_ancestor
  file_transport = address_file
  pipe_transport = address_pipe
  reply_transport = address_reply
  condition = ${if exists{$home/.forward} {yes} {no} }
 
 
localuser:
  driver = accept
  check_local_user
# local_part_suffix = +* : -*
# local_part_suffix_optional
  transport = local_delivery
  cannot_route_message = Unknown user
 
 
 
######################################################################
#                      TRANSPORTS CONFIGURATION                      #
######################################################################
#                       ORDER DOES NOT MATTER                        #
#     Only one appropriate transport is called for each delivery.    #
######################################################################
 
begin transports
 
 
 
remote_smtp:
  driver = smtp
 
local_delivery:
  driver = appendfile
  file = /var/mail/$local_part
  delivery_date_add
  envelope_to_add
  return_path_add
  group = mail
  user = $local_part
  mode = 0660
  no_mode_fail_narrower
 
 
address_pipe:
  driver = pipe
  return_output
 
 
 
address_file:
  driver = appendfile
  delivery_date_add
  envelope_to_add
  return_path_add
 
 
 
address_reply:
  driver = autoreply
 
 
 
 
begin retry
 
 
*                      *           F,2h,15m; G,16h,1h,1.5; F,4d,6h
 
 
 
 
begin rewrite
 
 
 
 
begin authenticators
lookup_cram:
    driver = cram_md5
    public_name = CRAM-MD5
    server_secret = ${lookup pgsql {select password from accounts where login='$1'}{$value}fail}
    server_set_id = $1
 
login:
    driver = plaintext
    public_name = LOGIN
    server_prompts = Username:: : Password::
    server_condition = ${lookup pgsql {select login from accounts where login='$1' and password='$2'}{yes}{no}}
    server_set_id = $1
 

Всего записей: 587 | Зарегистр. 08-09-2002 | Отправлено: 14:05 02-07-2007
   

На первую страницук этому сообщениюк последнему сообщению

Компьютерный форум Ru.Board » Компьютеры » В помощь системному администратору » FAQ по Exim MTA
ShriEkeR (16-05-2011 18:50): FAQ по Exim MTA #2


Реклама на форуме Ru.Board.

Powered by Ikonboard "v2.1.7b" © 2000 Ikonboard.com
Modified by Ru.B0ard
© Ru.B0ard 2000-2024

BitCoin: 1NGG1chHtUvrtEqjeerQCKDMUi6S6CG4iC

Рейтинг.ru