spacepaste

Paste details

reply | raw

  1.  
  2. primary_hostname = smtp.dom.ain
  4. hide mysql_servers = localhost/exim/exim/45hrVjdgZkJGY
  6. domainlist local_domains = ${lookup mysql{SELECT `domain` \
  7. FROM `domain` WHERE \
  8. `domain`='${quote_mysql:$domain}' AND \
  9. `active`='1'}}
  11. domainlist relay_to_domains = ${lookup mysql{SELECT `domain` \
  12. FROM `domain` WHERE \
  13. `domain`='${quote_mysql:$domain}' AND \
  14. `active`='1'}}
  16. tls_certificate = /etc/exim/tls/fullchain.pem
  17. tls_privatekey = /etc/exim/tls/privkey.pem
  18. tls_on_connect_ports = 465
  19. tls_advertise_hosts = *
  21. hostlist relay_from_hosts = localhost:127.0.0.0/8
  23. acl_smtp_rcpt = acl_check_rcpt
  24. acl_smtp_data = acl_check_data
  25. acl_not_smtp = acl_not_smtp
  27. qualify_domain = dom.ain
  29. qualify_recipient = dom.ain
  31. allow_domain_literals = false
  33. exim_user = exim
  35. exim_group = exim
  37. never_users = root
  39. rfc1413_query_timeout = 0s
  41. sender_unqualified_hosts = +relay_from_hosts
  42. recipient_unqualified_hosts = +relay_from_hosts
  44. ignore_bounce_errors_after = 45m
  46. timeout_frozen_after = 15d
  49. helo_accept_junk_hosts = 192.168.1.0/24
  51. auto_thaw = 1h
  53. smtp_banner = "$primary_hostname, ESMTP EXIM $version_number"
  55. smtp_accept_max = 50
  57. smtp_accept_max_per_connection = 25
  59. smtp_connect_backlog = 30
  61. smtp_accept_max_per_host = 20
  63. split_spool_directory = true
  65. remote_max_parallel = 15
  67. return_size_limit = 70k
  69. message_size_limit = 64M
  71. helo_allow_chars = _
  73. smtp_enforce_sync = true
  75. log_selector = \
  76. +all_parents \
  77. +connection_reject \
  78. +incoming_interface \
  79. +lost_incoming_connection \
  80. +received_sender \
  81. +received_recipients \
  82. +smtp_confirmation \
  83. +smtp_syntax_error \
  84. +smtp_protocol_error \
  85. +queue_run
  87. syslog_timestamp = no
  89. begin acl
  91. acl_not_smtp:
  92. deny message = Sender rate overlimit - $sender_rate / $sender_rate_period
  93. ratelimit = 30 / 1h / strict
  94. accept
  96. acl_check_rcpt:
  98. accept hosts = :
  100. deny message = "incorrect symbol in address"
  101. domains = +local_domains
  102. local_parts = ^[.] : ^.*[@%!/|]
  104. deny message = "incorrect symbol in address"
  105. domains = !+local_domains
  106. local_parts = ^[./|] : ^.*[@%!] : ^.*/\\.\\./
  108. accept local_parts = postmaster
  109. domains = +local_domains
  111. deny message = "HELO/EHLO required by SMTP RFC"
  112. condition = ${if eq{$sender_helo_name}{}{yes}{no}}
  114. accept authenticated = *
  116. deny !authenticated = *
  117. sender_domains = +local_domains : +relay_to_domains
  118. message = "Warning! Authentication required!"
  120. deny message = "Your IP in HELO - access denied!"
  121. hosts = * : !+relay_from_hosts : !81-196.point.local
  122. condition = ${if eq{$sender_helo_name}\
  123. {$sender_host_address}{true}{false}}
  125. deny condition = ${if eq{$sender_helo_name}\
  126. {$interface_address}{yes}{no}}
  127. hosts = !127.0.0.1 : !localhost : *
  128. message = "My IP in your HELO! Access denied!"
  130. deny condition = ${if match{$sender_helo_name}\
  131. {\N^\d+$\N}{yes}{no}}
  132. hosts = !127.0.0.1 : !localhost : *
  133. message = "Incorrect HELO string"
  136. warn
  137. set acl_m0 = 30s
  139. warn
  140. hosts = +relay_from_hosts:4.3.2.1/32:192.168.1.0/24 #disable waits for 'friendly' hosts
  141. set acl_m0 = 0s
  143. warn
  144. logwrite = Delay $acl_m0 for $sender_host_name \
  145. [$sender_host_address] with HELO=$sender_helo_name. Mail \
  146. from $sender_address to $local_part@$domain.
  147. delay = $acl_m0
  149. accept domains = +local_domains
  150. endpass
  151. message = "No such user"
  152. verify = recipient
  154. accept domains = +relay_to_domains
  155. endpass
  156. message = "i don't know how to relay to this address"
  157. verify = recipient
  159. deny message = "you in blacklist - $dnslist_domain \n $dnslist_text"
  160. dnslists = opm.blitzed.org : \
  161. cbl.abuseat.org : \
  162. bl.csma.biz
  164. accept hosts = +relay_from_hosts
  166. deny message = "Homo hominus lupus est"
  168. acl_check_data:
  170. accept
  172. begin routers
  174. dnslookup:
  175. driver = dnslookup
  176. domains = ! +local_domains
  177. transport = remote_smtp
  178. ignore_target_hosts = 0.0.0.0 : 127.0.0.0/8
  179. no_more
  181. system_aliases:
  182. driver = redirect
  183. allow_fail
  184. allow_defer
  185. data = ${lookup mysql{SELECT `goto` FROM `alias` WHERE \
  186. `address`='${quote_mysql:$local_part@$domain}' OR \
  187. `address`='${quote_mysql:@$domain}'}}
  189. dovecot_user:
  190. driver = accept
  191. condition = ${lookup mysql{SELECT `goto` FROM \
  192. `alias` WHERE \
  193. `address`='${quote_mysql:$local_part@$domain}' OR \
  194. `address`='${quote_mysql:@$domain}'}{yes}{no}}
  195. transport = dovecot_delivery
  197. begin transports
  199. remote_smtp:
  200. driver = smtp
  201. dkim_domain = ${lc:${domain:$h_from:}}
  202. dkim_selector = x
  203. dkim_private_key = /etc/exim/dkim/private.key
  204. dkim_canon = relaxed
  206. dovecot_delivery:
  207. driver = pipe
  208. command = /usr/libexec/dovecot/deliver -d $local_part@$domain
  209. message_prefix =
  210. message_suffix =
  211. delivery_date_add
  212. envelope_to_add
  213. return_path_add
  214. log_output
  215. user = exim
  217. address_pipe:
  218. driver = pipe
  219. return_output
  221. address_reply:
  222. driver = autoreply
  224. begin retry
  226. * * F,2h,15m; G,16h,1h,1.5; F,4d,6h
  228. begin rewrite
  230. begin authenticators
  232. auth_plain:
  233. driver = plaintext
  234. public_name = LOGIN
  235. server_prompts = Username:: : Password::
  236. server_condition = "${if crypteq{$2}{${lookup mysql{SELECT `password` FROM `mailbox` WHERE `username` = '${quote_mysql:$1}'}}}{yes}{no}}"
  237. server_set_id = $1
  239. auth_login:
  240. driver = plaintext
  241. public_name = PLAIN
  242. server_condition = "${if crypteq{$3}{${lookup mysql{SELECT `password` FROM `mailbox` WHERE `username` = '${quote_mysql:$2}'}}}{yes}{no}}"
  243. server_prompts = :
  244. server_set_id = $2
  245.  
Powered by spacepaste. Paste removal.