fripost-ansible/roles/common/files/etc/postfix, branch master

Postfix: don't share the master.cf between the instances.

2016-07-10T02:53:37+00:00

postfix: master.cf wibble

2016-05-18T19:14:14+00:00

postfix: Update to recommended TLS settings.

2016-05-18T19:13:46+00:00

Following Viktor Dukhovni's 2015-08-06 recommendation

    http://article.gmane.org/gmane.mail.postfix.user/251935

(We're using stronger ciphers and protocols in our own infrastructure.)

Make the webmail connect directly to the outgoing SMTP proxy.

2015-06-07T00:54:26+00:00

(Hence delete the 'webmail' Postfix instance.)  This shortens the delay
caused by the recipient verification probes.

Upgrade the MX configuration from Wheezy to Jessie.

2015-06-07T00:53:53+00:00

In particular, since Postfix is now able to perform LDAP lookups using
SASL, previous hacks with simble binds on cn=postfix,ou=services,… can
now be removed.

Upgrade amavis config to Jessie.

2015-06-07T00:53:33+00:00

Configure the list manager (Sympa).

2015-06-07T00:53:27+00:00

Replace Postgrey with postscreen.

2015-06-07T00:53:05+00:00

See http://www.postfix.org/POSTSCREEN_README.html and
    http://rob0.nodns4.us/postscreen.html

It's infortunate that smtpd(8) cannot be chrooted any longer, which
means that we have to un-chroot cleanup(8) as well.  Indeed, currently
smtpd(8) uses $virtual_alias_maps for recipient validation; later
cleanup(8) uses it again for rewriting.  So these processes need to be
both chrooted, or both not.

More logcheck-database tweaks.

2015-06-07T00:53:02+00:00

Increase the timeout in the smtpd waiting for the reinjection from amavis.

2015-06-07T00:52:30+00:00

SMTP client connection caching was introduced in 2.6.0: the SMTP session is
held for the next task (in adaptative mode, only when there was a delay of only
5s between the two previous mails), but Postfix will terminate it if the next
mail doesn't come soon enough, or if amavis does't terminate it itself (usually
after 15s).