fripost-ansible/roles/lists/files/etc/postfix, branch master Fripost ansible scripts Configure the list manager (Sympa). 2015-06-07T00:53:27+00:00 Guilhem Moulin guilhem@fripost.org 2015-05-14T20:00:36+00:00 166804e99e33c8ec5760e88ba1f52d4fc301334c 






Use $virtual_alias_domains not $virtual_mailbox_domains.
2015-06-07T00:52:52+00:00

Guilhem Moulin
guilhem@fripost.org

2014-07-09T21:28:21+00:00

c71f1cf51e7f6e8f43b5f7afb1d8a2012fd83259

Quoting postconf(5):

    smtpd_reject_unlisted_recipient (default: yes)
        Request that the Postfix SMTP server rejects mail for unknown recipient
        addresses, even when no explicit reject_unlisted_recipient access
        restriction is specified. This prevents the Postfix queue from filling
        up with undeliverable MAILER-DAEMON messages.

        An address is always considered "known" when it matches a virtual(5)
        alias or a canonical(5) mapping.
        […]
        * The recipient domain matches $virtual_alias_domains but the recipient
          is not listed in $virtual_alias_maps.
        * The recipient domain matches $virtual_mailbox_domains but the
          recipient is not listed in $virtual_mailbox_maps, and
          $virtual_mailbox_maps is not null.

Since we alias everything under special, "invalid", domains (mda.f.o and
mailman.f.o), our $virtual_mailbox_maps was null, which led to
reject_unlisted_recipient not being triggered for say, "noone@fripost.org".
However, replacing $virtual_mailbox_domains with $virtual_alias_domains fits
into the second point above.





Quoting postconf(5):

    smtpd_reject_unlisted_recipient (default: yes)
        Request that the Postfix SMTP server rejects mail for unknown recipient
        addresses, even when no explicit reject_unlisted_recipient access
        restriction is specified. This prevents the Postfix queue from filling
        up with undeliverable MAILER-DAEMON messages.

        An address is always considered "known" when it matches a virtual(5)
        alias or a canonical(5) mapping.
        […]
        * The recipient domain matches $virtual_alias_domains but the recipient
          is not listed in $virtual_alias_maps.
        * The recipient domain matches $virtual_mailbox_domains but the
          recipient is not listed in $virtual_mailbox_maps, and
          $virtual_mailbox_maps is not null.

Since we alias everything under special, "invalid", domains (mda.f.o and
mailman.f.o), our $virtual_mailbox_maps was null, which led to
reject_unlisted_recipient not being triggered for say, "noone@fripost.org".
However, replacing $virtual_mailbox_domains with $virtual_alias_domains fits
into the second point above.







Remove o=mailHosting from the LDAP directory suffix.
2015-06-07T00:52:39+00:00

Guilhem Moulin
guilhem@fripost.org

2014-07-07T16:37:30+00:00

2dfe29dfcd35fae7160178e329fb0647cc896e3b

So our suffix is now a mere 'dc=fripost,dc=org'.  We're also using the
default '/var/lib/ldap' as olcDbDirectory (hence we don't clear it
before hand).





So our suffix is now a mere 'dc=fripost,dc=org'.  We're also using the
default '/var/lib/ldap' as olcDbDirectory (hence we don't clear it
before hand).







Make the *_maps file names uniform.
2015-06-07T00:51:40+00:00

Guilhem Moulin
guilhem@fripost.org

2014-01-15T14:21:59+00:00

c836fecd1b0ae3c6348ade420cd8e0222cdb66eb

That is, don't put a leading virtual_ or a trailing _maps in file names.





That is, don't put a leading virtual_ or a trailing _maps in file names.







Fix the catch-all resolution again.
2015-06-07T00:51:38+00:00

Guilhem Moulin
guilhem@fripost.org

2014-01-15T06:32:20+00:00

9304813d505baaa50294ed0d37a11d9e3f0f6c79

We introduce a limitation on the domain-aliases: they can't have
children (e.g., lists or users) any longer.

The whole alias resolution, including catch-alls and domain aliases, is
now done in 'virtual_alias_maps'. We stop the resolution by returning a
dummy alias A -> A for mailboxes, before trying the catch-all maps.

We're still using transport_maps for lists. If it turns out to be a
bottleneck due to the high-latency coming from LDAP maps, (and the fact
that there is a single qmgr(8) daemon), we could rewrite lists to a
dummy subdomain and use a static transport_maps instead:

  virtual_alias_maps:
    mylist@example.org -> mylist#example.org@mlmmj.localhost.localdomain

  transport_maps:
    mlmmj.localhost.localdomain mlmmj:





We introduce a limitation on the domain-aliases: they can't have
children (e.g., lists or users) any longer.

The whole alias resolution, including catch-alls and domain aliases, is
now done in 'virtual_alias_maps'. We stop the resolution by returning a
dummy alias A -> A for mailboxes, before trying the catch-all maps.

We're still using transport_maps for lists. If it turns out to be a
bottleneck due to the high-latency coming from LDAP maps, (and the fact
that there is a single qmgr(8) daemon), we could rewrite lists to a
dummy subdomain and use a static transport_maps instead:

  virtual_alias_maps:
    mylist@example.org -> mylist#example.org@mlmmj.localhost.localdomain

  transport_maps:
    mlmmj.localhost.localdomain mlmmj:







Mailing lists (using mlmmj).
2015-06-07T00:51:38+00:00

Guilhem Moulin
guilhem@fripost.org

2014-01-14T07:06:54+00:00

ab83789bd70d294623e62e0b366b6b649cb5b0af

Right now the list server cannot be hosted with a MX, due to bug 51:

    http://mlmmj.org/bugs/bug.php?id=51

Web archive can be compiled with MHonArc, but the web server
configuration is not there yet.





Right now the list server cannot be hosted with a MX, due to bug 51:

    http://mlmmj.org/bugs/bug.php?id=51

Web archive can be compiled with MHonArc, but the web server
configuration is not there yet.