Server component Postfix

From Kolab wiki

Jump to: navigation, search

Contents

[edit]

Function

Postfix is the central mail transfer agent (MTA) of the Kolab server.

[edit]

Patches

Kolab currently uses two patches for the postfix server. All have now been integrated and if you use the newest postfix versions you won't need to install a patched postfix server.

Applied patch
Patch source: postfix-pipe-allow-empty-sender.patch
Applies to: postfix-2.2.5
Description: This patch adds the flag n as an additional pipe option. This prevents the default correction of empty sender addresses.
Impact: This patch is required for Kolab to work correctly.
References: Kolab bug tracker merge: ID=9
Applied in: postfix-2.3.7. A similar patch has been applied upstream by the postfix developers in the postfix 2.3 20050617 snapshot:
Feature: configurable MAILER-DAEMON replacement for the
null sender address that is used by the pipe(8) delivery
agent on the command line and in message headers. Command-line
address quoting is disabled when the replacement is empty.
File: pipe/pipe.c.

The feature mentioned above will be used as soon as the particular postfix version is available via the openpkg repository, as mentioned on the kolab devs emaillist


Applied patch
Patch source: patch postfix-ldap-leafonly patch
Applies to: postfix-2.2.5
Description: This patch adds exclude_internal as an additional postfix ldap option.
Impact: Without this postfix will not recognize groups correctly.
References: Kolab bug tracker merge: ID=8
Applied in: postfix-2.4.0. The patch was submitted upstream and got rewritten for postfix-2.4.0 there.
[edit]

Configuration

There exist seven templates for the postfix configuration:

Please note that the OpenPKG Kolab version still uses an older, patched postfix version and you will need to fix the configuration according to the version you are using.

[edit]

Platform specific notes

[edit]

OpenPKG

[edit]

Compile options 

--with=ldap
--with=sasl
--with=ssl
[edit]

Users

Involved users: 

kolab kolab
kolab kolab-r
root  kolab

kolab-r directories and files are: 

-rw-r-----  1 kolab kolab-r   5646 Jan 10 10:13 /kolab/etc/postfix/main.cf
-rw-r-----  1 kolab kolab-r   4417 Jan 10 10:13 /kolab/etc/postfix/master.cf
-rwxr-sr-x  1 kolab kolab-r 905988 Jan  9 11:39 /kolab/sbin/postdrop
-rwxr-sr-x  1 kolab kolab-r 966852 Jan  9 11:39 /kolab/sbin/postqueue
drwx-wx---  2 kolab kolab-r     48 Jan  9 11:39 /kolab/var/postfix/maildrop
drwx--x---  2 kolab kolab-r    200 Jan 23 20:47 /kolab/var/postfix/public
[edit]

Suse

[edit]

Users

[postfix file overview]

Involved users: 

postfix maildrop
postfix root
root maildrop
root root

Non 'root root' directories and files are: 

-rwxr-sr-x  1  root    maildrop 100518 Oct  2 11:09 /usr/sbin/postdrop
-rwxr-sr-x  1  root    maildrop 120891 Oct  2 11:09 /usr/sbin/postqueue
drwx------  14 postfix root        336 Dec 26 22:18 /var/spool/postfix/active
drwx------  8  postfix root        192 Dec 26 22:13 /var/spool/postfix/bounce
drwx------  2  postfix root         48 Oct  2 11:09 /var/spool/postfix/corrupt
drwx------  3  postfix root         72 Jan  5 18:45 /var/spool/postfix/defer
drwx------  3  postfix root         72 Jan  5 18:45 /var/spool/postfix/deferred
drwx------  3  postfix root         72 Jan  5 18:45 /var/spool/postfix/flush
drwx------  2  postfix root         48 Oct  2 11:09 /var/spool/postfix/hold
drwx------  14 postfix root        336 Jan  5 18:45 /var/spool/postfix/incoming
drwx-wx---  2  postfix maildrop    120 Jan  8 14:30 /var/spool/postfix/maildrop
drwx------  2  postfix root        504 Jan  5 20:47 /var/spool/postfix/private
drwx--x---  2  postfix maildrop    168 Jan  5 20:47 /var/spool/postfix/public
drwx------  2  postfix root         48 Oct  2 11:09 /var/spool/postfix/saved
drwx------  2  postfix root         48 Oct  2 11:09 /var/spool/postfix/trace
[edit]

Debian

[edit]

Compile options 

-DMAX_DYNAMIC_MAPS
-DHAS_PCRE
-DHAS_LDAP
-DHAS_MYSQL
-DHAS_PGSQL
-DUSE_TLS
-DUSE_SASL_AUTH
[edit]

Users

Involved users: 

postfix postdrop
postfix root
root postdrop
root root

Non 'root root' directories and files are: 


/var/spool/postfix

drwx------  18 postfix root     4096 2005-04-04 06:42 active
drwx------   9 postfix root     4096 2005-06-16 10:21 bounce
drwx------   2 postfix root     4096 2005-03-09 23:43 corrupt
drwx------  18 postfix root     4096 2005-04-19 08:53 defer
drwx------  18 postfix root     4096 2005-04-19 08:53 deferred
drwxr-xr-x   2 root    root     4096 2005-06-28 10:12 etc
drwx------   2 postfix root     4096 2005-03-09 23:43 flush
drwx------   2 postfix root     4096 2005-03-09 23:43 hold
drwx------  18 postfix root     4096 2005-06-28 10:42 incoming
drwxr-xr-x   2 root    root     4096 2005-06-28 10:12 lib
drwx-wx--T   2 postfix postdrop 4096 2005-06-28 06:29 maildrop
drwxr-xr-x   2 postfix root     4096 2005-03-28 02:55 pid
drwx------   2 postfix root     4096 2005-06-28 10:12 private
drwx--s---   2 postfix postdrop 4096 2005-06-28 10:12 public
drwx------   2 postfix root     4096 2005-03-09 23:43 saved
drwx------   2 postfix root     4096 2005-03-09 23:43 trace
drwxr-xr-x   3 root    root     4096 2005-03-09 23:43 usr

/usr/sbin/

-rwxr-xr-x  1 root root     10748 2005-03-01 02:05 /usr/sbin/postalias
-rwxr-xr-x  1 root root      7400 2005-03-01 02:05 /usr/sbin/postcat
-rwxr-xr-x  1 root root     38008 2005-03-01 02:05 /usr/sbin/postconf
-r-xr-sr-x  1 root postdrop  8444 2005-03-01 02:05 /usr/sbin/postdrop
-rwxr-xr-x  1 root root      6868 2005-03-01 02:05 /usr/sbin/postfix
-rwxr-xr-x  1 root root      5616 2005-03-01 02:05 /usr/sbin/postkick
-rwxr-xr-x  1 root root      5672 2005-03-01 02:05 /usr/sbin/postlock
-rwxr-xr-x  1 root root      5720 2005-03-01 02:05 /usr/sbin/postlog
-rwxr-xr-x  1 root root     10104 2005-03-01 02:05 /usr/sbin/postmap
-r-xr-sr-x  1 root postdrop  8440 2005-03-01 02:05 /usr/sbin/postqueue
-rwxr-xr-x  1 root root     15800 2005-03-01 02:05 /usr/sbin/postsuper


[edit]

Gentoo

[edit]

Use flags

hardened 
Not required.
ipv6 
Not required.
kolab 
Required.
ldap 
Required
mailwrapper 
Only if you want to install several mta's on this machine. If you only install kolab, it is not necessary.
mbox 
Not required. (Check again. Have this active in my profile.)
mysql 
Not required,
nis 
Not required.
pam 
Not required.
postgres 
Not required.
sasl 
Required.
ssl 
Required.
vda 
Not required.
[edit]

Configuration

The Gentoo development branch uses the newest postfix-2.4.0 version and has a corresponding main.cf and master.cf.

[edit]

Links

Retrieved from "http://wiki.kolab.org/index.php/Server_component_Postfix"
Personal tools
Page Categories