diff --git a/mail/postfix/Makefile b/mail/postfix/Makefile new file mode 100644 index 000000000..213d8d65f --- /dev/null +++ b/mail/postfix/Makefile @@ -0,0 +1,236 @@ +# +# Copyright (C) 2014 OpenWrt.org +# +# This is free software, licensed under the GNU General Public License v2. +# See /LICENSE for more information. +# + +include $(TOPDIR)/rules.mk + +PKG_NAME:=postfix +PKG_RELEASE:=1 +PKG_SOURCE_URL:=ftp://ftp.porcupine.org/mirrors/postfix-release/official/ +PKG_VERSION:=2.11.1 +PKG_MD5SUM:=56ac1f1a79737c4ac1e24535a122a4a6 +PKG_SOURCE:=$(PKG_NAME)-$(PKG_VERSION).tar.gz +PKG_MAINTAINER:=Denis Shulyaka +PKG_LICENSE:=IPL-1.0 +PKG_LICENSE_FILE:=LICENSE +PKG_BUILD_DEPENDS:=+tinycdb + +include $(INCLUDE_DIR)/package.mk + +define Package/postfix + SECTION:=mail + CATEGORY:=Mail + TITLE:=Postfix Mail Transmit Agent + URL:=http://www.postfix.org/ + DEPENDS:=+POSTFIX_TLS:libopenssl +POSTFIX_SASL:libsasl2 +POSTFIX_LDAP:libopenldap +libpcre +endef + +define Package/postfix/description + Postfix is Wietse Venema's mailer that started life as an alternative to the widely-used Sendmail program. Postfix attempts to be fast, easy to administer, and secure, while at the same time being sendmail compatible enough to not upset existing users. Thus, the outside has a sendmail-ish flavor, but the inside is completely different. +endef + +define Package/postfix/config + menu "Select postfix build options" + config POSTFIX_TLS + bool "TLS support" + default y + help + Implements TLS support in postfix (using OpenSSL). + config POSTFIX_SASL + bool "SASL support" + default y + help + Implements SASL support in postfix (using Cyrus SASL). + config POSTFIX_LDAP + bool "LDAP support" + default y + help + Implements LDAP support in postfix (using OpenLDAP). + endmenu +endef + +define Package/postfix/conffiles +/etc/postfix/main.cf +/etc/postfix/master.cf +/etc/postfix/aliases +endef + +CCARGS=-DHAS_CDB -DNO_DB -DNO_EPOLL -DNO_SIGSETJMP -DNO_NIS -DDEF_DB_TYPE=\"cdb\" +AUXLIBS=-L$(STAGING_DIR)/usr/lib -lcdb + +ifdef CONFIG_POSTFIX_TLS + CCARGS+=-DUSE_TLS + AUXLIBS+=-lssl -lcrypto +endif + +ifdef CONFIG_POSTFIX_SASL + CCARGS+=-DUSE_SASL_AUTH -DUSE_CYRUS_SASL -I$(STAGING_DIR)/usr/include/sasl + AUXLIBS+=-lsasl2 +endif + +ifdef CONFIG_POSTFIX_LDAP + CCARGS+=-DHAS_LDAP + AUXLIBS+=-lldap -llber +endif + +config_directory=/etc/postfix +sample_directory=/etc/postfix +command_directory=/usr/sbin +daemon_directory=/usr/libexec/postfix +data_directory=/usr/var/lib/postfix +queue_directory=/usr/var/spool/postfix +mail_spool_directory=/usr/var/mail +html_directory=no +manpage_directory=no +readme_directory=no +sendmail_path=/usr/sbin/sendmail +newaliases_path=/usr/bin/newaliases +mailq_path=/usr/bin/mailq + +ln_suffix=.postfix +ln_old_suffix=.old + +define Build/Configure + cd $(PKG_BUILD_DIR); $(MAKE) makefiles CCARGS='$(CCARGS)' $(TARGET_CONFIGURE_OPTS) AUXLIBS="$(AUXLIBS)" +endef + +define Build/Compile + # Currently postfix has a bug with Makefiles that CCARGS are not passed to the compiler, so we are copying them to CC + cd $(PKG_BUILD_DIR); $(MAKE) $(TARGET_CONFIGURE_OPTS) CC='$(TARGET_CC) $(CCARGS)' + mv $(PKG_BUILD_DIR)/conf/main.cf.default.openwrt $(PKG_BUILD_DIR)/conf/main.cf.default + echo "sendmail_path = $(sendmail_path)$(ln_suffix)" >> $(PKG_BUILD_DIR)/conf/main.cf.default + echo "newaliases_path = $(newaliases_path)$(ln_suffix)" >> $(PKG_BUILD_DIR)/conf/main.cf.default + echo "mailq_path = $(mailq_path)$(ln_suffix)" >> $(PKG_BUILD_DIR)/conf/main.cf.default + echo "html_directory = $(html_directory)" >> $(PKG_BUILD_DIR)/conf/main.cf.default + echo "manpage_directory = $(manpage_directory)" >> $(PKG_BUILD_DIR)/conf/main.cf.default + echo "sample_directory = $(sample_directory)" >> $(PKG_BUILD_DIR)/conf/main.cf.default + echo "readme_directory = $(readme_directory)" >> $(PKG_BUILD_DIR)/conf/main.cf.default + echo "command_directory = $(command_directory)" >> $(PKG_BUILD_DIR)/conf/main.cf.default + echo "daemon_directory = $(daemon_directory)" >> $(PKG_BUILD_DIR)/conf/main.cf.default + echo "data_directory = $(data_directory)" >> $(PKG_BUILD_DIR)/conf/main.cf.default + echo "queue_directory = $(queue_directory)" >> $(PKG_BUILD_DIR)/conf/main.cf.default + echo "config_directory = $(config_directory)" >> $(PKG_BUILD_DIR)/conf/main.cf.default + echo "mail_spool_directory = $(mail_spool_directory)" >> $(PKG_BUILD_DIR)/conf/main.cf.default +endef + +define Package/postfix/install + cd $(PKG_BUILD_DIR); $(MAKE) install_root=$(1) command_directory=$(command_directory) daemon_directory=$(daemon_directory) data_directory=$(data_directory) html_directory=$(html_directory) mail_owner=postfix mailq_path=$(mailq_path)$(ln_suffix) manpage_directory=$(manpage_directory) newaliases_path=$(newaliases_path)$(ln_suffix) queue_directory=$(queue_directory) readme_directory=$(readme_directory) sendmail_path=$(sendmail_path)$(ln_suffix) setgid_group=postdrop sample_directory=$(sample_directory) config_directory=$(config_directory) non-interactive-package + $(INSTALL_DIR) $(1)$(mail_spool_directory) + $(INSTALL_DIR) $(1)/etc/init.d/ + $(INSTALL_BIN) $(PKG_BUILD_DIR)/postfix_init $(1)/etc/init.d/postfix +endef + +define Package/postfix/postinst +#!/bin/sh +# check if we are on real system +if [ -z "$${IPKG_INSTROOT}" ]; then + + if [ -f "$(sendmail_path)" -a "$$(readlink "$(sendmail_path)")" != "$(sendmail_path)$(ln_suffix)" ]; then + mv "$(sendmail_path)" "$(sendmail_path)$(ln_old_suffix)" + echo "Warning: $(sendmail_path) saved as $(sendmail_path)$(ln_old_suffix)" + fi + if [ ! -f "$(sendmail_path)" ]; then + ln -s "$(sendmail_path)$(ln_suffix)" "$(sendmail_path)" + fi + + if [ -f "$(newaliases_path)" -a "$$(readlink "$(newaliases_path)")" != "$(newaliases_path)$(ln_suffix)" ]; then + mv "$(newaliases_path)" "$(newaliases_path)$(ln_old_suffix)" + echo "Warning: $(newaliases_path) saved as $(newaliases_path)$(ln_old_suffix)" + fi + if [ ! -f "$(newaliases_path)" ]; then + ln -s "$(newaliases_path)$(ln_suffix)" "$(newaliases_path)" + fi + + if [ -f "$(mailq_path)" -a "$$(readlink "$(mailq_path)")" != "$(mailq_path)$(ln_suffix)" ]; then + mv "$(mailq_path)" "$(mailq_path)$(ln_old_suffix)" + echo "Warning: $(mailq_path) saved as $(mailq_path)$(ln_old_suffix)" + fi + if [ ! -f "$(mailq_path)" ]; then + ln -s "$(mailq_path)$(ln_suffix)" "$(mailq_path)" + fi + + echo "myhostname = $$(uci get system.@system[0].hostname)" >> $(config_directory)/main.cf.default + echo "mydomain = $$(uci get system.@system[0].hostname|sed -e "s/[^\.]*\.\(.*\)/\1/")" >> $(config_directory)/main.cf.default + for net in $$(uci show network|grep ipaddr|sed -e "s/network\.\([^\.]*\).*/\1/"); do eval "$$(ipcalc.sh $$(uci get network.$$net.ipaddr) $$(uci get network.$$net.netmask))"; echo "$$IP/$$PREFIX"; done | xargs echo "mynetworks =" >> $(config_directory)/main.cf.default + + grep -qc "^sendmail_path" /etc/postfix/main.cf >/dev/null || postconf -e "$$(grep "^sendmail_path =" /etc/postfix/main.cf.default)" + grep -qc "^newaliases_path" /etc/postfix/main.cf >/dev/null || postconf -e "$$(grep "^newaliases_path =" /etc/postfix/main.cf.default)" + grep -qc "^mailq_path" /etc/postfix/main.cf >/dev/null || postconf -e "$$(grep "^mailq_path =" /etc/postfix/main.cf.default)" + grep -qc "^html_directory" /etc/postfix/main.cf >/dev/null || postconf -e "$$(grep "^html_directory =" /etc/postfix/main.cf.default)" + grep -qc "^manpage_directory" /etc/postfix/main.cf >/dev/null || postconf -e "$$(grep "^manpage_directory =" /etc/postfix/main.cf.default)" + grep -qc "^sample_directory" /etc/postfix/main.cf >/dev/null || postconf -e "$$(grep "^sample_directory =" /etc/postfix/main.cf.default)" + grep -qc "^readme_directory" /etc/postfix/main.cf >/dev/null || postconf -e "$$(grep "^readme_directory =" /etc/postfix/main.cf.default)" + grep -qc "^command_directory" /etc/postfix/main.cf >/dev/null || postconf -e "$$(grep "^command_directory =" /etc/postfix/main.cf.default)" + grep -qc "^daemon_directory" /etc/postfix/main.cf >/dev/null || postconf -e "$$(grep "^daemon_directory =" /etc/postfix/main.cf.default)" + grep -qc "^data_directory" /etc/postfix/main.cf >/dev/null || postconf -e "$$(grep "^data_directory =" /etc/postfix/main.cf.default)" + grep -qc "^queue_directory" /etc/postfix/main.cf >/dev/null || postconf -e "$$(grep "^queue_directory =" /etc/postfix/main.cf.default)" + grep -qc "^config_directory" /etc/postfix/main.cf >/dev/null || postconf -e "$$(grep "^config_directory =" /etc/postfix/main.cf.default)" + grep -qc "^mail_spool_directory" /etc/postfix/main.cf >/dev/null || postconf -e "$$(grep "^mail_spool_directory =" /etc/postfix/main.cf.default)" + grep -qc "^mail_owner" /etc/postfix/main.cf >/dev/null || postconf -e "$$(grep "^mail_owner =" /etc/postfix/main.cf.default)" + grep -qc "^setgid_group" /etc/postfix/main.cf >/dev/null || postconf -e "$$(grep "^setgid_group =" /etc/postfix/main.cf.default)" + grep -qc "^myhostname" /etc/postfix/main.cf >/dev/null || postconf -e "$$(grep "^myhostname =" /etc/postfix/main.cf.default)" + grep -qc "^mydomain" /etc/postfix/main.cf >/dev/null || postconf -e "$$(grep "^mydomain =" /etc/postfix/main.cf.default)" + grep -qc "^mynetworks" /etc/postfix/main.cf >/dev/null || postconf -e "$$(grep "^mynetworks =" /etc/postfix/main.cf.default)" + + EXTRA_COMMANDS=create_users /etc/init.d/postfix create_users + + postfix set-permissions + postfix post-install upgrade-source + postfix upgrade-configuration + newaliases + if [ `ps | grep "postfix/master" | grep -cv grep` -gt 0 ] + then + postfix reload + fi + if [ `grep -c aliases /etc/sysupgrade.conf` -eq 0 ] + then + echo "$(config_directory)/main.cf" >> /etc/sysupgrade.conf + echo "$(config_directory)/aliases" >> /etc/sysupgrade.conf + fi + +fi +endef + +define Package/postfix/prerm +#!/bin/sh +# check if we are on real system +if [ -z "$${IPKG_INSTROOT}" ]; then + + if [ `ps | grep "postfix/master" | grep -cv grep` -gt 0 ] + then + postfix stop + fi + + /etc/init.d/postfix disable + +fi +endef + +define Package/postfix/postrm +#!/bin/sh +# check if we are on real system +if [ -z "$${IPKG_INSTROOT}" ]; then + rm -f $(config_directory)/aliases.cdb $(data_directory)/master.lock + + rm -f "$(sendmail_path)" "$(newaliases_path)" "$(mailq_path)" + + if [ -f "$(sendmail_path)$(ln_old_suffix)" ]; then + mv "$(sendmail_path)$(ln_old_suffix)" "$(sendmail_path)" + echo "Warning: $(sendmail_path) restored from $(sendmail_path)$(ln_old_suffix)" + fi + if [ -f "$(newaliases_path)$(ln_old_suffix)" ]; then + mv "$(newaliases_path)$(ln_old_suffix)" "$(newaliases_path)" + echo "Warning: $(newaliases_path) restored from $(newaliases_path)$(ln_old_suffix)" + fi + if [ -f "$(mailq_path)$(ln_old_suffix)" ]; then + mv "$(mailq_path)$(ln_old_suffix)" "$(mailq_path)" + echo "Warning: $(mailq_path) restored from $(mailq_path)$(ln_old_suffix)" + fi + +fi +endef + +$(eval $(call BuildPackage,postfix)) diff --git a/mail/postfix/patches/100-fsstat.patch b/mail/postfix/patches/100-fsstat.patch new file mode 100644 index 000000000..c91acca7a --- /dev/null +++ b/mail/postfix/patches/100-fsstat.patch @@ -0,0 +1,12 @@ +diff -rupN postfix-2.8.1/src/smtpd/smtpd_check.c postfix-2.8.1_patched/src/smtpd/smtpd_check.c +--- postfix-2.8.1/src/smtpd/smtpd_check.c 2011-01-04 22:03:50.000000000 +0300 ++++ postfix-2.8.1_patched/src/smtpd/smtpd_check.c 2011-03-06 19:35:39.000000000 +0300 +@@ -4894,7 +4894,7 @@ char *smtpd_check_queue(SMTPD_STATE *s + */ + #define BLOCKS(x) ((x) / fsbuf.block_size) + +- fsspace(".", &fsbuf); ++ fsspace("/overlay", &fsbuf); + if (msg_verbose) + msg_info("%s: blocks %lu avail %lu min_free %lu msg_size_limit %lu", + myname, diff --git a/mail/postfix/patches/200-manpages.patch b/mail/postfix/patches/200-manpages.patch new file mode 100644 index 000000000..948376c51 --- /dev/null +++ b/mail/postfix/patches/200-manpages.patch @@ -0,0 +1,80 @@ +diff -Naur postfix-2.10.2/conf/post-install postfix-2.10.2_patched/conf/post-install +--- postfix-2.10.2/conf/post-install 2013-06-13 18:07:46.000000000 +0400 ++++ postfix-2.10.2_patched/conf/post-install 2013-11-19 21:17:49.572820573 +0400 +@@ -350,10 +350,10 @@ + + # Sanity checks + +-case $manpage_directory in +- no) echo $0: Error: manpage_directory no longer accepts \"no\" values. 1>&2 +- echo Try again with \"$0 manpage_directory=/pathname ...\". 1>&2; exit 1;; +-esac ++#case $manpage_directory in ++# no) echo $0: Error: manpage_directory no longer accepts \"no\" values. 1>&2 ++# echo Try again with \"$0 manpage_directory=/pathname ...\". 1>&2; exit 1;; ++#esac + + case $setgid_group in + no) echo $0: Error: setgid_group no longer accepts \"no\" values. 1>&2 +@@ -361,7 +361,7 @@ + esac + + for path in "$daemon_directory" "$command_directory" "$queue_directory" \ +- "$sendmail_path" "$newaliases_path" "$mailq_path" "$manpage_directory" ++ "$sendmail_path" "$newaliases_path" "$mailq_path" + do + case "$path" in + /*) ;; +@@ -369,7 +369,7 @@ + esac + done + +-for path in "$html_directory" "$readme_directory" ++for path in "$html_directory" "$readme_directory" "$manpage_directory" + do + case "$path" in + /*) ;; +diff -Naur postfix-2.10.2/postfix-install postfix-2.10.2_patched/postfix-install +--- postfix-2.10.2/postfix-install 2012-05-22 23:40:29.000000000 +0400 ++++ postfix-2.10.2_patched/postfix-install 2013-11-19 21:12:20.694160734 +0400 +@@ -481,13 +481,13 @@ + exit 1;; + esac + +-case "$manpage_directory" in +- no) (echo $0: Error: the manpage_directory parameter no longer accepts +- echo \"no\" values. Try again with \"manpage_directory=/path/name\" +- echo on the command line or execute \"make install\" and specify +- echo manpage_directory interactively.) | ${FMT} 1>&2 +- exit 1;; +-esac ++#case "$manpage_directory" in ++# no) (echo $0: Error: the manpage_directory parameter no longer accepts ++# echo \"no\" values. Try again with \"manpage_directory=/path/name\" ++# echo on the command line or execute \"make install\" and specify ++# echo manpage_directory interactively.) | ${FMT} 1>&2 ++# exit 1;; ++#esac + + for path in "$html_directory" "$readme_directory" + do +@@ -500,7 +500,7 @@ + done + + for path in "$daemon_directory" "$data_directory" "$command_directory" "$queue_directory" \ +- "$sendmail_path" "$newaliases_path" "$mailq_path" "$manpage_directory" ++ "$sendmail_path" "$newaliases_path" "$mailq_path" + do + case "$path" in + /*) ;; +@@ -680,8 +680,8 @@ + compare_or_replace $mode "$owner" "$group" html/$file \ + $HTML_DIRECTORY/$file || exit 1;; + '$manpage_directory') +- check_parent $MANPAGE_DIRECTORY/$file || exit 1 +- compare_or_replace $mode "$owner" "$group" man/$file \ ++ test "$manpage_directory" = "no" || check_parent $MANPAGE_DIRECTORY/$file || exit 1 ++ test "$manpage_directory" = "no" || compare_or_replace $mode "$owner" "$group" man/$file \ + $MANPAGE_DIRECTORY/$file || exit 1;; + '$readme_directory') + test "$readme_directory" = "no" || diff --git a/mail/postfix/patches/300-init.patch b/mail/postfix/patches/300-init.patch new file mode 100644 index 000000000..3c1bb7f5f --- /dev/null +++ b/mail/postfix/patches/300-init.patch @@ -0,0 +1,23 @@ +diff -rupN postfix-2.8.1/postfix_init postfix-2.8.1_patched/postfix_init +--- postfix-2.8.1/postfix_init 1970-01-01 03:00:00.000000000 +0300 ++++ postfix-2.8.1_patched/postfix_init 2011-03-06 21:44:50.000000000 +0300 +@@ -0,0 +1,19 @@ ++#!/bin/sh /etc/rc.common ++# Copyright (C) 2014 OpenWrt.org ++ ++START=50 ++STOP=50 ++ ++create_users() { ++ group_exists postfix || group_add postfix 87 ++ user_exists postfix || user_add postfix 87 ++ group_exists postdrop || group_add postdrop 88 ++} ++ ++start() { ++ postfix start ++} ++ ++stop() { ++ postfix stop ++} diff --git a/mail/postfix/patches/400-cdb.patch b/mail/postfix/patches/400-cdb.patch new file mode 100644 index 000000000..cc04cd17e --- /dev/null +++ b/mail/postfix/patches/400-cdb.patch @@ -0,0 +1,14 @@ +diff -Naur postfix-2.11.1/src/util/sys_defs.h postfix-2.11.1.patched/src/util/sys_defs.h +--- postfix-2.11.1/src/util/sys_defs.h 2013-09-30 00:51:55.000000000 +0400 ++++ postfix-2.11.1.patched/src/util/sys_defs.h 2014-09-29 03:11:48.962277971 +0400 +@@ -767,9 +767,8 @@ + #define INTERNAL_LOCK MYFLOCK_STYLE_FLOCK + #define DEF_MAILBOX_LOCK "fcntl, dotlock" /* RedHat >= 4.x */ + #define HAS_FSYNC +-#define HAS_DB + #define NATIVE_DB_TYPE "hash" +-#define ALIAS_DB_MAP DEF_DB_TYPE ":/etc/aliases" ++#define ALIAS_DB_MAP DEF_DB_TYPE ":/etc/postfix/aliases" + #ifndef NO_NIS + #define HAS_NIS + #endif diff --git a/mail/postfix/patches/500-crosscompile.patch b/mail/postfix/patches/500-crosscompile.patch new file mode 100644 index 000000000..abd3f7d98 --- /dev/null +++ b/mail/postfix/patches/500-crosscompile.patch @@ -0,0 +1,27 @@ +--- postfix-2.10.2/makedefs 2013-02-04 05:33:13.000000000 +0400 ++++ postfix-2.10.2_patched/makedefs 2013-11-19 22:48:50.528560454 +0400 +@@ -107,9 +107,9 @@ + + case $# in + # Officially supported usage. +- 0) SYSTEM=`(uname -s) 2>/dev/null` +- RELEASE=`(uname -r) 2>/dev/null` +- VERSION=`(uname -v) 2>/dev/null` ++ 0) SYSTEM="Linux" ++ RELEASE="3.10.18" ++ VERSION="OpenWRT" + case "$VERSION" in + dcosx*) SYSTEM=$VERSION;; + esac;; +@@ -384,9 +384,9 @@ + esac + for name in nsl resolv + do +- for lib in /usr/lib64 /lib64 /usr/lib /usr/lib/* /lib /lib/* ++ for lib in /usr/lib64 /usr/lib64/* /usr/lib /usr/lib/* /lib /lib/* + do +- test -e $lib/lib$name.a -o -e $lib/lib$name.so && { ++ test -e $PKG_BUILD_DIR/$lib/lib$name.a -o -e $PKG_BUILD_DIR/$lib/lib$name.so && { + SYSLIBS="$SYSLIBS -l$name" + break + } diff --git a/mail/postfix/patches/600-nopostconf.patch b/mail/postfix/patches/600-nopostconf.patch new file mode 100644 index 000000000..78248c74f --- /dev/null +++ b/mail/postfix/patches/600-nopostconf.patch @@ -0,0 +1,40 @@ +diff -Naur postfix-2.11.1/postfix-install postfix-2.11.1.patched/postfix-install +--- postfix-2.11.1/postfix-install 2014-10-05 20:43:58.598876904 +0400 ++++ postfix-2.11.1.patched/postfix-install 2014-10-05 20:47:36.076700082 +0400 +@@ -729,21 +729,21 @@ + # Postfix releases, and software should not suddenly be installed in + # the wrong place when Postfix is being upgraded. + +-bin/postconf -c $CONFIG_DIRECTORY -e \ +- "daemon_directory = $daemon_directory" \ +- "data_directory = $data_directory" \ +- "command_directory = $command_directory" \ +- "queue_directory = $queue_directory" \ +- "mail_owner = $mail_owner" \ +- "setgid_group = $setgid_group" \ +- "sendmail_path = $sendmail_path" \ +- "mailq_path = $mailq_path" \ +- "newaliases_path = $newaliases_path" \ +- "html_directory = $html_directory" \ +- "manpage_directory = $manpage_directory" \ +- "sample_directory = $sample_directory" \ +- "readme_directory = $readme_directory" \ +-|| exit 1 ++#bin/postconf -c $CONFIG_DIRECTORY -e \ ++# "daemon_directory = $daemon_directory" \ ++# "data_directory = $data_directory" \ ++# "command_directory = $command_directory" \ ++# "queue_directory = $queue_directory" \ ++# "mail_owner = $mail_owner" \ ++# "setgid_group = $setgid_group" \ ++# "sendmail_path = $sendmail_path" \ ++# "mailq_path = $mailq_path" \ ++# "newaliases_path = $newaliases_path" \ ++# "html_directory = $html_directory" \ ++# "manpage_directory = $manpage_directory" \ ++# "sample_directory = $sample_directory" \ ++# "readme_directory = $readme_directory" \ ++#|| exit 1 + + # If Postfix is being installed locally from source code, do the + # post-install processing now. diff --git a/mail/postfix/patches/700-defaultconfig.patch b/mail/postfix/patches/700-defaultconfig.patch new file mode 100644 index 000000000..394117dea --- /dev/null +++ b/mail/postfix/patches/700-defaultconfig.patch @@ -0,0 +1,916 @@ +diff -Naur postfix-2.11.1/conf/main.cf postfix-2.11.1.patched/conf/main.cf +--- postfix-2.11.1/conf/main.cf 2013-12-24 18:57:25.000000000 +0400 ++++ postfix-2.11.1.patched/conf/main.cf 2014-10-05 21:35:53.427534410 +0400 +@@ -21,43 +21,8 @@ + # + #soft_bounce = no + +-# LOCAL PATHNAME INFORMATION +-# +-# The queue_directory specifies the location of the Postfix queue. +-# This is also the root directory of Postfix daemons that run chrooted. +-# See the files in examples/chroot-setup for setting up Postfix chroot +-# environments on different UNIX systems. +-# +-queue_directory = /var/spool/postfix +- +-# The command_directory parameter specifies the location of all +-# postXXX commands. +-# +-command_directory = /usr/sbin +- +-# The daemon_directory parameter specifies the location of all Postfix +-# daemon programs (i.e. programs listed in the master.cf file). This +-# directory must be owned by root. +-# +-daemon_directory = /usr/libexec/postfix +- +-# The data_directory parameter specifies the location of Postfix-writable +-# data files (caches, random numbers). This directory must be owned +-# by the mail_owner account (see below). +-# +-data_directory = /var/lib/postfix +- + # QUEUE AND PROCESS OWNERSHIP + # +-# The mail_owner parameter specifies the owner of the Postfix queue +-# and of most Postfix daemon processes. Specify the name of a user +-# account THAT DOES NOT SHARE ITS USER OR GROUP ID WITH OTHER ACCOUNTS +-# AND THAT OWNS NO OTHER FILES OR PROCESSES ON THE SYSTEM. In +-# particular, don't specify nobody or daemon. PLEASE USE A DEDICATED +-# USER. +-# +-mail_owner = postfix +- + # The default_privs parameter specifies the default rights used by + # the local delivery agent for delivery to external file or command. + # These rights are used in the absence of a recipient user context. +@@ -613,45 +578,4 @@ + # -dmS $process_name gdb $daemon_directory/$process_name + # $process_id & sleep 1 + +-# INSTALL-TIME CONFIGURATION INFORMATION +-# +-# The following parameters are used when installing a new Postfix version. +-# +-# sendmail_path: The full pathname of the Postfix sendmail command. +-# This is the Sendmail-compatible mail posting interface. +-# +-sendmail_path = +- +-# newaliases_path: The full pathname of the Postfix newaliases command. +-# This is the Sendmail-compatible command to build alias databases. +-# +-newaliases_path = +- +-# mailq_path: The full pathname of the Postfix mailq command. This +-# is the Sendmail-compatible mail queue listing command. +-# +-mailq_path = +- +-# setgid_group: The group for mail submission and queue management +-# commands. This must be a group name with a numerical group ID that +-# is not shared with other accounts, not even with the Postfix account. +-# +-setgid_group = +- +-# html_directory: The location of the Postfix HTML documentation. +-# +-html_directory = +- +-# manpage_directory: The location of the Postfix on-line manual pages. +-# +-manpage_directory = +- +-# sample_directory: The location of the Postfix sample configuration files. +-# This parameter is obsolete as of Postfix 2.1. +-# +-sample_directory = +- +-# readme_directory: The location of the Postfix README files. +-# +-readme_directory = + inet_protocols = ipv4 +diff -Naur postfix-2.11.1/conf/main.cf.default.openwrt postfix-2.11.1.patched/conf/main.cf.default.openwrt +--- postfix-2.11.1/conf/main.cf.default.openwrt 1970-01-01 03:00:00.000000000 +0300 ++++ postfix-2.11.1.patched/conf/main.cf.default.openwrt 2014-10-05 23:48:59.751127768 +0400 +@@ -0,0 +1,819 @@ ++# DO NOT EDIT THIS FILE. EDIT THE MAIN.CF FILE INSTEAD. THE ++# TEXT HERE JUST SHOWS DEFAULT SETTINGS BUILT INTO POSTFIX. ++# ++2bounce_notice_recipient = postmaster ++access_map_defer_code = 450 ++access_map_reject_code = 554 ++address_verify_cache_cleanup_interval = 12h ++address_verify_default_transport = $default_transport ++address_verify_local_transport = $local_transport ++address_verify_map = btree:$data_directory/verify_cache ++address_verify_negative_cache = yes ++address_verify_negative_expire_time = 3d ++address_verify_negative_refresh_time = 3h ++address_verify_poll_count = ${stress?1}${stress:3} ++address_verify_poll_delay = 3s ++address_verify_positive_expire_time = 31d ++address_verify_positive_refresh_time = 7d ++address_verify_relay_transport = $relay_transport ++address_verify_relayhost = $relayhost ++address_verify_sender = $double_bounce_sender ++address_verify_sender_dependent_default_transport_maps = $sender_dependent_default_transport_maps ++address_verify_sender_dependent_relayhost_maps = $sender_dependent_relayhost_maps ++address_verify_sender_ttl = 0s ++address_verify_service_name = verify ++address_verify_transport_maps = $transport_maps ++address_verify_virtual_transport = $virtual_transport ++alias_database = cdb:/etc/aliases ++alias_maps = cdb:/etc/aliases ++allow_mail_to_commands = alias, forward ++allow_mail_to_files = alias, forward ++allow_min_user = no ++allow_percent_hack = yes ++allow_untrusted_routing = no ++alternate_config_directories = ++always_add_missing_headers = no ++always_bcc = ++anvil_rate_time_unit = 60s ++anvil_status_update_time = 600s ++append_at_myorigin = yes ++append_dot_mydomain = yes ++application_event_drain_time = 100s ++authorized_flush_users = static:anyone ++authorized_mailq_users = static:anyone ++authorized_submit_users = static:anyone ++backwards_bounce_logfile_compatibility = yes ++berkeley_db_create_buffer_size = 16777216 ++berkeley_db_read_buffer_size = 131072 ++best_mx_transport = ++biff = yes ++body_checks = ++body_checks_size_limit = 51200 ++bounce_notice_recipient = postmaster ++bounce_queue_lifetime = 5d ++bounce_service_name = bounce ++bounce_size_limit = 50000 ++bounce_template_file = ++broken_sasl_auth_clients = no ++canonical_classes = envelope_sender, envelope_recipient, header_sender, header_recipient ++canonical_maps = ++cleanup_service_name = cleanup ++command_execution_directory = ++command_expansion_filter = 1234567890!@%-_=+:,./abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ ++command_time_limit = 1000s ++connection_cache_protocol_timeout = 5s ++connection_cache_service_name = scache ++connection_cache_status_update_time = 600s ++connection_cache_ttl_limit = 2s ++content_filter = ++cyrus_sasl_config_path = ++daemon_table_open_error_is_fatal = no ++daemon_timeout = 18000s ++debug_peer_level = 2 ++debug_peer_list = ++debugger_command = ++default_database_type = cdb ++default_delivery_slot_cost = 5 ++default_delivery_slot_discount = 50 ++default_delivery_slot_loan = 3 ++default_destination_concurrency_failed_cohort_limit = 1 ++default_destination_concurrency_limit = 20 ++default_destination_concurrency_negative_feedback = 1 ++default_destination_concurrency_positive_feedback = 1 ++default_destination_rate_delay = 0s ++default_destination_recipient_limit = 50 ++default_extra_recipient_limit = 1000 ++default_filter_nexthop = ++default_minimum_delivery_slots = 3 ++default_privs = nobody ++default_process_limit = 100 ++default_rbl_reply = $rbl_code Service unavailable; $rbl_class [$rbl_what] blocked using $rbl_domain${rbl_reason?; $rbl_reason} ++default_recipient_limit = 20000 ++default_recipient_refill_delay = 5s ++default_recipient_refill_limit = 100 ++default_transport = smtp ++default_verp_delimiters = += ++defer_code = 450 ++defer_service_name = defer ++defer_transports = ++delay_logging_resolution_limit = 2 ++delay_notice_recipient = postmaster ++delay_warning_time = 0h ++deliver_lock_attempts = 20 ++deliver_lock_delay = 1s ++destination_concurrency_feedback_debug = no ++detect_8bit_encoding_header = yes ++disable_dns_lookups = no ++disable_mime_input_processing = no ++disable_mime_output_conversion = no ++disable_verp_bounces = no ++disable_vrfy_command = no ++dnsblog_reply_delay = 0s ++dnsblog_service_name = dnsblog ++dont_remove = 0 ++double_bounce_sender = double-bounce ++duplicate_filter_limit = 1000 ++empty_address_default_transport_maps_lookup_key = <> ++empty_address_recipient = MAILER-DAEMON ++empty_address_relayhost_maps_lookup_key = <> ++enable_long_queue_ids = no ++enable_original_recipient = yes ++error_delivery_slot_cost = $default_delivery_slot_cost ++error_delivery_slot_discount = $default_delivery_slot_discount ++error_delivery_slot_loan = $default_delivery_slot_loan ++error_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit ++error_destination_concurrency_limit = $default_destination_concurrency_limit ++error_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback ++error_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback ++error_destination_rate_delay = $default_destination_rate_delay ++error_destination_recipient_limit = $default_destination_recipient_limit ++error_extra_recipient_limit = $default_extra_recipient_limit ++error_initial_destination_concurrency = $initial_destination_concurrency ++error_minimum_delivery_slots = $default_minimum_delivery_slots ++error_notice_recipient = postmaster ++error_recipient_limit = $default_recipient_limit ++error_recipient_refill_delay = $default_recipient_refill_delay ++error_recipient_refill_limit = $default_recipient_refill_limit ++error_service_name = error ++execution_directory_expansion_filter = 1234567890!@%-_=+:,./abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ ++expand_owner_alias = no ++export_environment = TZ MAIL_CONFIG LANG ++fallback_transport = ++fallback_transport_maps = ++fast_flush_domains = $relay_domains ++fast_flush_purge_time = 7d ++fast_flush_refresh_time = 12h ++fault_injection_code = 0 ++flush_service_name = flush ++fork_attempts = 5 ++fork_delay = 1s ++forward_expansion_filter = 1234567890!@%-_=+:,./abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ ++forward_path = $home/.forward${recipient_delimiter}${extension}, $home/.forward ++frozen_delivered_to = yes ++hash_queue_depth = 1 ++hash_queue_names = deferred, defer ++header_address_token_limit = 10240 ++header_checks = ++header_size_limit = 102400 ++helpful_warnings = yes ++home_mailbox = ++hopcount_limit = 50 ++ignore_mx_lookup_error = no ++import_environment = MAIL_CONFIG MAIL_DEBUG MAIL_LOGTAG TZ XAUTHORITY DISPLAY LANG=C ++in_flow_delay = 1s ++inet_interfaces = all ++inet_protocols = all ++initial_destination_concurrency = 5 ++internal_mail_filter_classes = ++invalid_hostname_reject_code = 501 ++ipc_idle = 5s ++ipc_timeout = 3600s ++ipc_ttl = 1000s ++line_length_limit = 2048 ++lmdb_map_size = 16777216 ++lmtp_address_preference = any ++lmtp_assume_final = no ++lmtp_bind_address = ++lmtp_bind_address6 = ++lmtp_body_checks = ++lmtp_cname_overrides_servername = no ++lmtp_connect_timeout = 0s ++lmtp_connection_cache_destinations = ++lmtp_connection_cache_on_demand = yes ++lmtp_connection_cache_time_limit = 2s ++lmtp_connection_reuse_count_limit = 0 ++lmtp_connection_reuse_time_limit = 300s ++lmtp_data_done_timeout = 600s ++lmtp_data_init_timeout = 120s ++lmtp_data_xfer_timeout = 180s ++lmtp_defer_if_no_mx_address_found = no ++lmtp_delivery_slot_cost = $default_delivery_slot_cost ++lmtp_delivery_slot_discount = $default_delivery_slot_discount ++lmtp_delivery_slot_loan = $default_delivery_slot_loan ++lmtp_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit ++lmtp_destination_concurrency_limit = $default_destination_concurrency_limit ++lmtp_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback ++lmtp_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback ++lmtp_destination_rate_delay = $default_destination_rate_delay ++lmtp_destination_recipient_limit = $default_destination_recipient_limit ++lmtp_discard_lhlo_keyword_address_maps = ++lmtp_discard_lhlo_keywords = ++lmtp_dns_resolver_options = ++lmtp_dns_support_level = ++lmtp_enforce_tls = no ++lmtp_extra_recipient_limit = $default_extra_recipient_limit ++lmtp_generic_maps = ++lmtp_header_checks = ++lmtp_host_lookup = dns ++lmtp_initial_destination_concurrency = $initial_destination_concurrency ++lmtp_lhlo_name = $myhostname ++lmtp_lhlo_timeout = 300s ++lmtp_line_length_limit = 998 ++lmtp_mail_timeout = 300s ++lmtp_mime_header_checks = ++lmtp_minimum_delivery_slots = $default_minimum_delivery_slots ++lmtp_mx_address_limit = 5 ++lmtp_mx_session_limit = 2 ++lmtp_nested_header_checks = ++lmtp_per_record_deadline = no ++lmtp_pix_workaround_delay_time = 10s ++lmtp_pix_workaround_maps = ++lmtp_pix_workaround_threshold_time = 500s ++lmtp_pix_workarounds = disable_esmtp,delay_dotcrlf ++lmtp_quit_timeout = 300s ++lmtp_quote_rfc821_envelope = yes ++lmtp_randomize_addresses = yes ++lmtp_rcpt_timeout = 300s ++lmtp_recipient_limit = $default_recipient_limit ++lmtp_recipient_refill_delay = $default_recipient_refill_delay ++lmtp_recipient_refill_limit = $default_recipient_refill_limit ++lmtp_reply_filter = ++lmtp_rset_timeout = 20s ++lmtp_sasl_auth_cache_name = ++lmtp_sasl_auth_cache_time = 90d ++lmtp_sasl_auth_enable = no ++lmtp_sasl_auth_soft_bounce = yes ++lmtp_sasl_mechanism_filter = ++lmtp_sasl_password_maps = ++lmtp_sasl_path = ++lmtp_sasl_security_options = noplaintext, noanonymous ++lmtp_sasl_tls_security_options = $lmtp_sasl_security_options ++lmtp_sasl_tls_verified_security_options = $lmtp_sasl_tls_security_options ++lmtp_sasl_type = cyrus ++lmtp_send_dummy_mail_auth = no ++lmtp_send_xforward_command = no ++lmtp_sender_dependent_authentication = no ++lmtp_skip_5xx_greeting = yes ++lmtp_skip_quit_response = no ++lmtp_starttls_timeout = 300s ++lmtp_tcp_port = 24 ++lmtp_tls_CAfile = ++lmtp_tls_CApath = ++lmtp_tls_block_early_mail_reply = no ++lmtp_tls_cert_file = ++lmtp_tls_ciphers = export ++lmtp_tls_dcert_file = ++lmtp_tls_dkey_file = $lmtp_tls_dcert_file ++lmtp_tls_eccert_file = ++lmtp_tls_eckey_file = $lmtp_tls_eccert_file ++lmtp_tls_enforce_peername = yes ++lmtp_tls_exclude_ciphers = ++lmtp_tls_fingerprint_cert_match = ++lmtp_tls_fingerprint_digest = md5 ++lmtp_tls_force_insecure_host_tlsa_lookup = no ++lmtp_tls_key_file = $lmtp_tls_cert_file ++lmtp_tls_loglevel = 0 ++lmtp_tls_mandatory_ciphers = medium ++lmtp_tls_mandatory_exclude_ciphers = ++lmtp_tls_mandatory_protocols = !SSLv2 ++lmtp_tls_note_starttls_offer = no ++lmtp_tls_per_site = ++lmtp_tls_policy_maps = ++lmtp_tls_protocols = !SSLv2 ++lmtp_tls_scert_verifydepth = 9 ++lmtp_tls_secure_cert_match = nexthop ++lmtp_tls_security_level = ++lmtp_tls_session_cache_database = ++lmtp_tls_session_cache_timeout = 3600s ++lmtp_tls_trust_anchor_file = ++lmtp_tls_verify_cert_match = hostname ++lmtp_use_tls = no ++lmtp_xforward_timeout = 300s ++local_command_shell = ++local_delivery_slot_cost = $default_delivery_slot_cost ++local_delivery_slot_discount = $default_delivery_slot_discount ++local_delivery_slot_loan = $default_delivery_slot_loan ++local_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit ++local_destination_concurrency_limit = 2 ++local_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback ++local_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback ++local_destination_rate_delay = $default_destination_rate_delay ++local_destination_recipient_limit = 1 ++local_extra_recipient_limit = $default_extra_recipient_limit ++local_header_rewrite_clients = permit_inet_interfaces ++local_initial_destination_concurrency = $initial_destination_concurrency ++local_minimum_delivery_slots = $default_minimum_delivery_slots ++local_recipient_limit = $default_recipient_limit ++local_recipient_maps = proxy:unix:passwd.byname $alias_maps ++local_recipient_refill_delay = $default_recipient_refill_delay ++local_recipient_refill_limit = $default_recipient_refill_limit ++local_transport = local:$myhostname ++luser_relay = ++mail_name = Postfix ++mail_owner = postfix ++mail_release_date = 20140507 ++mail_version = 2.11.1 ++mailbox_command = ++mailbox_command_maps = ++mailbox_delivery_lock = fcntl, dotlock ++mailbox_size_limit = 51200000 ++mailbox_transport = ++mailbox_transport_maps = ++maps_rbl_domains = ++maps_rbl_reject_code = 554 ++masquerade_classes = envelope_sender, header_sender, header_recipient ++masquerade_domains = ++masquerade_exceptions = ++master_service_disable = ++max_idle = 100s ++max_use = 100 ++maximal_backoff_time = 4000s ++maximal_queue_lifetime = 5d ++message_reject_characters = ++message_size_limit = 10240000 ++message_strip_characters = ++milter_command_timeout = 30s ++milter_connect_macros = j {daemon_name} v ++milter_connect_timeout = 30s ++milter_content_timeout = 300s ++milter_data_macros = i ++milter_default_action = tempfail ++milter_end_of_data_macros = i ++milter_end_of_header_macros = i ++milter_header_checks = ++milter_helo_macros = {tls_version} {cipher} {cipher_bits} {cert_subject} {cert_issuer} ++milter_macro_daemon_name = $myhostname ++milter_macro_v = $mail_name $mail_version ++milter_mail_macros = i {auth_type} {auth_authen} {auth_author} {mail_addr} {mail_host} {mail_mailer} ++milter_protocol = 6 ++milter_rcpt_macros = i {rcpt_addr} {rcpt_host} {rcpt_mailer} ++milter_unknown_command_macros = ++mime_boundary_length_limit = 2048 ++mime_header_checks = $header_checks ++mime_nesting_limit = 100 ++minimal_backoff_time = 300s ++multi_instance_directories = ++multi_instance_enable = no ++multi_instance_group = ++multi_instance_name = ++multi_instance_wrapper = ++multi_recipient_bounce_reject_code = 550 ++mydestination = $myhostname, localhost.$mydomain, localhost ++mynetworks_style = subnet ++myorigin = $myhostname ++nested_header_checks = $header_checks ++non_fqdn_reject_code = 504 ++non_smtpd_milters = ++notify_classes = resource, software ++owner_request_special = yes ++parent_domain_matches_subdomains = debug_peer_list,fast_flush_domains,mynetworks,permit_mx_backup_networks,qmqpd_authorized_clients,relay_domains,smtpd_access_maps ++permit_mx_backup_networks = ++pickup_service_name = pickup ++plaintext_reject_code = 450 ++postmulti_control_commands = reload flush ++postmulti_start_commands = start ++postmulti_stop_commands = stop abort drain quick-stop ++postscreen_access_list = permit_mynetworks ++postscreen_bare_newline_action = ignore ++postscreen_bare_newline_enable = no ++postscreen_bare_newline_ttl = 30d ++postscreen_blacklist_action = ignore ++postscreen_cache_cleanup_interval = 12h ++postscreen_cache_map = btree:$data_directory/postscreen_cache ++postscreen_cache_retention_time = 7d ++postscreen_client_connection_count_limit = $smtpd_client_connection_count_limit ++postscreen_command_count_limit = 20 ++postscreen_command_filter = ++postscreen_command_time_limit = ${stress?10}${stress:300}s ++postscreen_disable_vrfy_command = $disable_vrfy_command ++postscreen_discard_ehlo_keyword_address_maps = $smtpd_discard_ehlo_keyword_address_maps ++postscreen_discard_ehlo_keywords = $smtpd_discard_ehlo_keywords ++postscreen_dnsbl_action = ignore ++postscreen_dnsbl_reply_map = ++postscreen_dnsbl_sites = ++postscreen_dnsbl_threshold = 1 ++postscreen_dnsbl_ttl = 1h ++postscreen_dnsbl_whitelist_threshold = 0 ++postscreen_enforce_tls = $smtpd_enforce_tls ++postscreen_expansion_filter = $smtpd_expansion_filter ++postscreen_forbidden_commands = $smtpd_forbidden_commands ++postscreen_greet_action = ignore ++postscreen_greet_banner = $smtpd_banner ++postscreen_greet_ttl = 1d ++postscreen_greet_wait = ${stress?2}${stress:6}s ++postscreen_helo_required = $smtpd_helo_required ++postscreen_non_smtp_command_action = drop ++postscreen_non_smtp_command_enable = no ++postscreen_non_smtp_command_ttl = 30d ++postscreen_pipelining_action = enforce ++postscreen_pipelining_enable = no ++postscreen_pipelining_ttl = 30d ++postscreen_post_queue_limit = $default_process_limit ++postscreen_pre_queue_limit = $default_process_limit ++postscreen_reject_footer = $smtpd_reject_footer ++postscreen_tls_security_level = $smtpd_tls_security_level ++postscreen_upstream_proxy_protocol = ++postscreen_upstream_proxy_timeout = 5s ++postscreen_use_tls = $smtpd_use_tls ++postscreen_watchdog_timeout = 10s ++postscreen_whitelist_interfaces = static:all ++prepend_delivered_header = command, file, forward ++process_id = 6537 ++process_id_directory = pid ++process_name = postconf ++propagate_unmatched_extensions = canonical, virtual ++proxy_interfaces = ++proxy_read_maps = $local_recipient_maps $mydestination $virtual_alias_maps $virtual_alias_domains $virtual_mailbox_maps $virtual_mailbox_domains $relay_recipient_maps $relay_domains $canonical_maps $sender_canonical_maps $recipient_canonical_maps $relocated_maps $transport_maps $mynetworks $smtpd_sender_login_maps $sender_bcc_maps $recipient_bcc_maps $smtp_generic_maps $lmtp_generic_maps $alias_maps ++proxy_write_maps = $smtp_sasl_auth_cache_name $lmtp_sasl_auth_cache_name $address_verify_map $postscreen_cache_map ++proxymap_service_name = proxymap ++proxywrite_service_name = proxywrite ++qmgr_clog_warn_time = 300s ++qmgr_daemon_timeout = 1000s ++qmgr_fudge_factor = 100 ++qmgr_ipc_timeout = 60s ++qmgr_message_active_limit = 20000 ++qmgr_message_recipient_limit = 20000 ++qmgr_message_recipient_minimum = 10 ++qmqpd_authorized_clients = ++qmqpd_client_port_logging = no ++qmqpd_error_delay = 1s ++qmqpd_timeout = 300s ++queue_file_attribute_count_limit = 100 ++queue_minfree = 0 ++queue_run_delay = 300s ++queue_service_name = qmgr ++rbl_reply_maps = ++receive_override_options = ++recipient_bcc_maps = ++recipient_canonical_classes = envelope_recipient, header_recipient ++recipient_canonical_maps = ++recipient_delimiter = ++reject_code = 554 ++reject_tempfail_action = defer_if_permit ++relay_clientcerts = ++relay_delivery_slot_cost = $default_delivery_slot_cost ++relay_delivery_slot_discount = $default_delivery_slot_discount ++relay_delivery_slot_loan = $default_delivery_slot_loan ++relay_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit ++relay_destination_concurrency_limit = $default_destination_concurrency_limit ++relay_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback ++relay_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback ++relay_destination_rate_delay = $default_destination_rate_delay ++relay_destination_recipient_limit = $default_destination_recipient_limit ++relay_domains = $mydestination ++relay_domains_reject_code = 554 ++relay_extra_recipient_limit = $default_extra_recipient_limit ++relay_initial_destination_concurrency = $initial_destination_concurrency ++relay_minimum_delivery_slots = $default_minimum_delivery_slots ++relay_recipient_limit = $default_recipient_limit ++relay_recipient_maps = ++relay_recipient_refill_delay = $default_recipient_refill_delay ++relay_recipient_refill_limit = $default_recipient_refill_limit ++relay_transport = relay ++relayhost = ++relocated_maps = ++remote_header_rewrite_domain = ++require_home_directory = no ++reset_owner_alias = no ++resolve_dequoted_address = yes ++resolve_null_domain = no ++resolve_numeric_domain = no ++retry_delivery_slot_cost = $default_delivery_slot_cost ++retry_delivery_slot_discount = $default_delivery_slot_discount ++retry_delivery_slot_loan = $default_delivery_slot_loan ++retry_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit ++retry_destination_concurrency_limit = $default_destination_concurrency_limit ++retry_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback ++retry_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback ++retry_destination_rate_delay = $default_destination_rate_delay ++retry_destination_recipient_limit = $default_destination_recipient_limit ++retry_extra_recipient_limit = $default_extra_recipient_limit ++retry_initial_destination_concurrency = $initial_destination_concurrency ++retry_minimum_delivery_slots = $default_minimum_delivery_slots ++retry_recipient_limit = $default_recipient_limit ++retry_recipient_refill_delay = $default_recipient_refill_delay ++retry_recipient_refill_limit = $default_recipient_refill_limit ++rewrite_service_name = rewrite ++send_cyrus_sasl_authzid = no ++sender_bcc_maps = ++sender_canonical_classes = envelope_sender, header_sender ++sender_canonical_maps = ++sender_dependent_default_transport_maps = ++sender_dependent_relayhost_maps = ++sendmail_fix_line_endings = always ++service_throttle_time = 60s ++setgid_group = postdrop ++show_user_unknown_table_name = yes ++showq_service_name = showq ++smtp_address_preference = any ++smtp_always_send_ehlo = yes ++smtp_bind_address = ++smtp_bind_address6 = ++smtp_body_checks = ++smtp_cname_overrides_servername = no ++smtp_connect_timeout = 30s ++smtp_connection_cache_destinations = ++smtp_connection_cache_on_demand = yes ++smtp_connection_cache_time_limit = 2s ++smtp_connection_reuse_count_limit = 0 ++smtp_connection_reuse_time_limit = 300s ++smtp_data_done_timeout = 600s ++smtp_data_init_timeout = 120s ++smtp_data_xfer_timeout = 180s ++smtp_defer_if_no_mx_address_found = no ++smtp_delivery_slot_cost = $default_delivery_slot_cost ++smtp_delivery_slot_discount = $default_delivery_slot_discount ++smtp_delivery_slot_loan = $default_delivery_slot_loan ++smtp_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit ++smtp_destination_concurrency_limit = $default_destination_concurrency_limit ++smtp_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback ++smtp_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback ++smtp_destination_rate_delay = $default_destination_rate_delay ++smtp_destination_recipient_limit = $default_destination_recipient_limit ++smtp_discard_ehlo_keyword_address_maps = ++smtp_discard_ehlo_keywords = ++smtp_dns_resolver_options = ++smtp_dns_support_level = ++smtp_enforce_tls = no ++smtp_extra_recipient_limit = $default_extra_recipient_limit ++smtp_fallback_relay = $fallback_relay ++smtp_generic_maps = ++smtp_header_checks = ++smtp_helo_name = $myhostname ++smtp_helo_timeout = 300s ++smtp_host_lookup = dns ++smtp_initial_destination_concurrency = $initial_destination_concurrency ++smtp_line_length_limit = 998 ++smtp_mail_timeout = 300s ++smtp_mime_header_checks = ++smtp_minimum_delivery_slots = $default_minimum_delivery_slots ++smtp_mx_address_limit = 5 ++smtp_mx_session_limit = 2 ++smtp_nested_header_checks = ++smtp_never_send_ehlo = no ++smtp_per_record_deadline = no ++smtp_pix_workaround_delay_time = 10s ++smtp_pix_workaround_maps = ++smtp_pix_workaround_threshold_time = 500s ++smtp_pix_workarounds = disable_esmtp,delay_dotcrlf ++smtp_quit_timeout = 300s ++smtp_quote_rfc821_envelope = yes ++smtp_randomize_addresses = yes ++smtp_rcpt_timeout = 300s ++smtp_recipient_limit = $default_recipient_limit ++smtp_recipient_refill_delay = $default_recipient_refill_delay ++smtp_recipient_refill_limit = $default_recipient_refill_limit ++smtp_reply_filter = ++smtp_rset_timeout = 20s ++smtp_sasl_auth_cache_name = ++smtp_sasl_auth_cache_time = 90d ++smtp_sasl_auth_enable = no ++smtp_sasl_auth_soft_bounce = yes ++smtp_sasl_mechanism_filter = ++smtp_sasl_password_maps = ++smtp_sasl_path = ++smtp_sasl_security_options = noplaintext, noanonymous ++smtp_sasl_tls_security_options = $smtp_sasl_security_options ++smtp_sasl_tls_verified_security_options = $smtp_sasl_tls_security_options ++smtp_sasl_type = cyrus ++smtp_send_dummy_mail_auth = no ++smtp_send_xforward_command = no ++smtp_sender_dependent_authentication = no ++smtp_skip_5xx_greeting = yes ++smtp_skip_quit_response = yes ++smtp_starttls_timeout = 300s ++smtp_tls_CAfile = ++smtp_tls_CApath = ++smtp_tls_block_early_mail_reply = no ++smtp_tls_cert_file = ++smtp_tls_ciphers = export ++smtp_tls_dcert_file = ++smtp_tls_dkey_file = $smtp_tls_dcert_file ++smtp_tls_eccert_file = ++smtp_tls_eckey_file = $smtp_tls_eccert_file ++smtp_tls_enforce_peername = yes ++smtp_tls_exclude_ciphers = ++smtp_tls_fingerprint_cert_match = ++smtp_tls_fingerprint_digest = md5 ++smtp_tls_force_insecure_host_tlsa_lookup = no ++smtp_tls_key_file = $smtp_tls_cert_file ++smtp_tls_loglevel = 0 ++smtp_tls_mandatory_ciphers = medium ++smtp_tls_mandatory_exclude_ciphers = ++smtp_tls_mandatory_protocols = !SSLv2 ++smtp_tls_note_starttls_offer = no ++smtp_tls_per_site = ++smtp_tls_policy_maps = ++smtp_tls_protocols = !SSLv2 ++smtp_tls_scert_verifydepth = 9 ++smtp_tls_secure_cert_match = nexthop, dot-nexthop ++smtp_tls_security_level = ++smtp_tls_session_cache_database = ++smtp_tls_session_cache_timeout = 3600s ++smtp_tls_trust_anchor_file = ++smtp_tls_verify_cert_match = hostname ++smtp_use_tls = no ++smtp_xforward_timeout = 300s ++smtpd_authorized_verp_clients = $authorized_verp_clients ++smtpd_authorized_xclient_hosts = ++smtpd_authorized_xforward_hosts = ++smtpd_banner = $myhostname ESMTP $mail_name ++smtpd_client_connection_count_limit = 50 ++smtpd_client_connection_rate_limit = 0 ++smtpd_client_event_limit_exceptions = ${smtpd_client_connection_limit_exceptions:$mynetworks} ++smtpd_client_message_rate_limit = 0 ++smtpd_client_new_tls_session_rate_limit = 0 ++smtpd_client_port_logging = no ++smtpd_client_recipient_rate_limit = 0 ++smtpd_client_restrictions = ++smtpd_command_filter = ++smtpd_data_restrictions = ++smtpd_delay_open_until_valid_rcpt = yes ++smtpd_delay_reject = yes ++smtpd_discard_ehlo_keyword_address_maps = ++smtpd_discard_ehlo_keywords = ++smtpd_end_of_data_restrictions = ++smtpd_enforce_tls = no ++smtpd_error_sleep_time = 1s ++smtpd_etrn_restrictions = ++smtpd_expansion_filter = \t\40!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\\]^_`abcdefghijklmnopqrstuvwxyz{|}~ ++smtpd_forbidden_commands = CONNECT GET POST ++smtpd_hard_error_limit = ${stress?1}${stress:20} ++smtpd_helo_required = no ++smtpd_helo_restrictions = ++smtpd_history_flush_threshold = 100 ++smtpd_junk_command_limit = ${stress?1}${stress:100} ++smtpd_log_access_permit_actions = ++smtpd_milters = ++smtpd_noop_commands = ++smtpd_null_access_lookup_key = <> ++smtpd_peername_lookup = yes ++smtpd_per_record_deadline = ${stress?yes}${stress:no} ++smtpd_policy_service_max_idle = 300s ++smtpd_policy_service_max_ttl = 1000s ++smtpd_policy_service_timeout = 100s ++smtpd_proxy_ehlo = $myhostname ++smtpd_proxy_filter = ++smtpd_proxy_options = ++smtpd_proxy_timeout = 100s ++smtpd_recipient_limit = 1000 ++smtpd_recipient_overshoot_limit = 1000 ++smtpd_recipient_restrictions = ++smtpd_reject_footer = ++smtpd_reject_unlisted_recipient = yes ++smtpd_reject_unlisted_sender = no ++smtpd_relay_restrictions = permit_mynetworks, permit_sasl_authenticated, defer_unauth_destination ++smtpd_restriction_classes = ++smtpd_sasl_auth_enable = no ++smtpd_sasl_authenticated_header = no ++smtpd_sasl_exceptions_networks = ++smtpd_sasl_local_domain = ++smtpd_sasl_path = smtpd ++smtpd_sasl_security_options = noanonymous ++smtpd_sasl_service = smtp ++smtpd_sasl_tls_security_options = $smtpd_sasl_security_options ++smtpd_sasl_type = cyrus ++smtpd_sender_login_maps = ++smtpd_sender_restrictions = ++smtpd_service_name = smtpd ++smtpd_soft_error_limit = 10 ++smtpd_starttls_timeout = ${stress?10}${stress:300}s ++smtpd_timeout = ${stress?10}${stress:300}s ++smtpd_tls_CAfile = ++smtpd_tls_CApath = ++smtpd_tls_always_issue_session_ids = yes ++smtpd_tls_ask_ccert = no ++smtpd_tls_auth_only = no ++smtpd_tls_ccert_verifydepth = 9 ++smtpd_tls_cert_file = ++smtpd_tls_ciphers = export ++smtpd_tls_dcert_file = ++smtpd_tls_dh1024_param_file = ++smtpd_tls_dh512_param_file = ++smtpd_tls_dkey_file = $smtpd_tls_dcert_file ++smtpd_tls_eccert_file = ++smtpd_tls_eckey_file = $smtpd_tls_eccert_file ++smtpd_tls_eecdh_grade = strong ++smtpd_tls_exclude_ciphers = ++smtpd_tls_fingerprint_digest = md5 ++smtpd_tls_key_file = $smtpd_tls_cert_file ++smtpd_tls_loglevel = 0 ++smtpd_tls_mandatory_ciphers = medium ++smtpd_tls_mandatory_exclude_ciphers = ++smtpd_tls_mandatory_protocols = !SSLv2 ++smtpd_tls_protocols = ++smtpd_tls_received_header = no ++smtpd_tls_req_ccert = no ++smtpd_tls_security_level = ++smtpd_tls_session_cache_database = ++smtpd_tls_session_cache_timeout = 3600s ++smtpd_tls_wrappermode = no ++smtpd_upstream_proxy_protocol = ++smtpd_upstream_proxy_timeout = 5s ++smtpd_use_tls = no ++soft_bounce = no ++stale_lock_time = 500s ++stress = ++strict_7bit_headers = no ++strict_8bitmime = no ++strict_8bitmime_body = no ++strict_mailbox_ownership = yes ++strict_mime_encoding_domain = no ++strict_rfc821_envelopes = no ++sun_mailtool_compatibility = no ++swap_bangpath = yes ++syslog_facility = mail ++syslog_name = ${multi_instance_name:postfix}${multi_instance_name?$multi_instance_name} ++tcp_windowsize = 0 ++tls_append_default_CA = no ++tls_daemon_random_bytes = 32 ++tls_dane_digest_agility = on ++tls_dane_digests = sha512 sha256 ++tls_dane_trust_anchor_digest_enable = yes ++tls_disable_workarounds = ++tls_eecdh_strong_curve = prime256v1 ++tls_eecdh_ultra_curve = secp384r1 ++tls_export_cipherlist = ALL:+RC4:@STRENGTH ++tls_high_cipherlist = ALL:!EXPORT:!LOW:!MEDIUM:+RC4:@STRENGTH ++tls_legacy_public_key_fingerprints = no ++tls_low_cipherlist = ALL:!EXPORT:+RC4:@STRENGTH ++tls_medium_cipherlist = ALL:!EXPORT:!LOW:+RC4:@STRENGTH ++tls_null_cipherlist = eNULL:!aNULL ++tls_preempt_cipherlist = no ++tls_random_bytes = 32 ++tls_random_exchange_name = ${data_directory}/prng_exch ++tls_random_prng_update_period = 3600s ++tls_random_reseed_period = 3600s ++tls_random_source = dev:/dev/urandom ++tls_ssl_options = ++tls_wildcard_matches_multiple_labels = yes ++tlsmgr_service_name = tlsmgr ++tlsproxy_enforce_tls = $smtpd_enforce_tls ++tlsproxy_service_name = tlsproxy ++tlsproxy_tls_CAfile = $smtpd_tls_CAfile ++tlsproxy_tls_CApath = $smtpd_tls_CApath ++tlsproxy_tls_always_issue_session_ids = $smtpd_tls_always_issue_session_ids ++tlsproxy_tls_ask_ccert = $smtpd_tls_ask_ccert ++tlsproxy_tls_ccert_verifydepth = $smtpd_tls_ccert_verifydepth ++tlsproxy_tls_cert_file = $smtpd_tls_cert_file ++tlsproxy_tls_ciphers = $smtpd_tls_ciphers ++tlsproxy_tls_dcert_file = $smtpd_tls_dcert_file ++tlsproxy_tls_dh1024_param_file = $smtpd_tls_dh1024_param_file ++tlsproxy_tls_dh512_param_file = $smtpd_tls_dh512_param_file ++tlsproxy_tls_dkey_file = $smtpd_tls_dkey_file ++tlsproxy_tls_eccert_file = $smtpd_tls_eccert_file ++tlsproxy_tls_eckey_file = $smtpd_tls_eckey_file ++tlsproxy_tls_eecdh_grade = $smtpd_tls_eecdh_grade ++tlsproxy_tls_exclude_ciphers = $smtpd_tls_exclude_ciphers ++tlsproxy_tls_fingerprint_digest = $smtpd_tls_fingerprint_digest ++tlsproxy_tls_key_file = $smtpd_tls_key_file ++tlsproxy_tls_loglevel = $smtpd_tls_loglevel ++tlsproxy_tls_mandatory_ciphers = $smtpd_tls_mandatory_ciphers ++tlsproxy_tls_mandatory_exclude_ciphers = $smtpd_tls_mandatory_exclude_ciphers ++tlsproxy_tls_mandatory_protocols = $smtpd_tls_mandatory_protocols ++tlsproxy_tls_protocols = $smtpd_tls_protocols ++tlsproxy_tls_req_ccert = $smtpd_tls_req_ccert ++tlsproxy_tls_security_level = $smtpd_tls_security_level ++tlsproxy_use_tls = $smtpd_use_tls ++tlsproxy_watchdog_timeout = 10s ++trace_service_name = trace ++transport_maps = ++transport_retry_time = 60s ++trigger_timeout = 10s ++undisclosed_recipients_header = ++unknown_address_reject_code = 450 ++unknown_address_tempfail_action = $reject_tempfail_action ++unknown_client_reject_code = 450 ++unknown_helo_hostname_tempfail_action = $reject_tempfail_action ++unknown_hostname_reject_code = 450 ++unknown_local_recipient_reject_code = 550 ++unknown_relay_recipient_reject_code = 550 ++unknown_virtual_alias_reject_code = 550 ++unknown_virtual_mailbox_reject_code = 550 ++unverified_recipient_defer_code = 450 ++unverified_recipient_reject_code = 450 ++unverified_recipient_reject_reason = ++unverified_recipient_tempfail_action = $reject_tempfail_action ++unverified_sender_defer_code = 450 ++unverified_sender_reject_code = 450 ++unverified_sender_reject_reason = ++unverified_sender_tempfail_action = $reject_tempfail_action ++verp_delimiter_filter = -=+ ++virtual_alias_domains = $virtual_alias_maps ++virtual_alias_expansion_limit = 1000 ++virtual_alias_maps = $virtual_maps ++virtual_alias_recursion_limit = 1000 ++virtual_delivery_slot_cost = $default_delivery_slot_cost ++virtual_delivery_slot_discount = $default_delivery_slot_discount ++virtual_delivery_slot_loan = $default_delivery_slot_loan ++virtual_destination_concurrency_failed_cohort_limit = $default_destination_concurrency_failed_cohort_limit ++virtual_destination_concurrency_limit = $default_destination_concurrency_limit ++virtual_destination_concurrency_negative_feedback = $default_destination_concurrency_negative_feedback ++virtual_destination_concurrency_positive_feedback = $default_destination_concurrency_positive_feedback ++virtual_destination_rate_delay = $default_destination_rate_delay ++virtual_destination_recipient_limit = $default_destination_recipient_limit ++virtual_extra_recipient_limit = $default_extra_recipient_limit ++virtual_gid_maps = ++virtual_initial_destination_concurrency = $initial_destination_concurrency ++virtual_mailbox_base = ++virtual_mailbox_domains = $virtual_mailbox_maps ++virtual_mailbox_limit = 51200000 ++virtual_mailbox_lock = fcntl, dotlock ++virtual_mailbox_maps = ++virtual_minimum_delivery_slots = $default_minimum_delivery_slots ++virtual_minimum_uid = 100 ++virtual_recipient_limit = $default_recipient_limit ++virtual_recipient_refill_delay = $default_recipient_refill_delay ++virtual_recipient_refill_limit = $default_recipient_refill_limit ++virtual_transport = virtual ++virtual_uid_maps = diff --git a/mail/postfix/patches/800-fmt.patch b/mail/postfix/patches/800-fmt.patch new file mode 100644 index 000000000..7739e24bd --- /dev/null +++ b/mail/postfix/patches/800-fmt.patch @@ -0,0 +1,12 @@ +diff -Naur postfix-2.11.1/conf/post-install postfix-2.11.1.patched/conf/post-install +--- postfix-2.11.1/conf/post-install 2014-10-05 20:43:58.597876946 +0400 ++++ postfix-2.11.1.patched/conf/post-install 2014-10-11 16:28:01.258874097 +0400 +@@ -310,7 +310,7 @@ + case `uname -s` in + HP-UX*) FMT=cat;; + SunOS*) FMT=fake_fmt;; +- *) FMT=fmt;; ++ *) FMT="xargs echo";; + esac + + # If a parameter is not set via the command line or environment,