~ubuntu-branches/ubuntu/oneiric/postfix/oneiric

 

       By  default, connection caching is enabled temporarily for

       destinations that have a high volume of mail in the active

 

<b>SMTP DESTINATION SYNTAX</b>

       SMTP destinations have the following form:

       low privilege.

 

<b>STANDARDS</b>

 

<b>DIAGNOSTICS</b>

       Problems  and transactions are logged to <b>syslogd</b>(8).  Cor-

       the client is used for multiple domains.

 

       Most  smtp_<i>xxx</i>  configuration  parameters have an lmtp_<i>xxx</i>

       document describes only those LMTP-related parameters that

 

       Changes to <a href="postconf.5.html"><b>main.cf</b></a> are picked up automatically, as <a href="smtp.8.html"><b>smtp</b>(8)</a>

       processes  run  for only a limited amount of time. Use the

              firewall "&lt;CR&gt;&lt;LF&gt;.&lt;CR&gt;&lt;LF&gt;" bug.

 

       <b><a href="postconf.5.html#smtp_pix_workaround_threshold_time">smtp_pix_workaround_threshold_time</a> (500s)</b>

 

       <b><a href="postconf.5.html#smtp_quote_rfc821_envelope">smtp_quote_rfc821_envelope</a> (yes)</b>

              Quote addresses in SMTP MAIL FROM and RCPT TO  com-

 

       <b><a href="postconf.5.html#smtp_skip_5xx_greeting">smtp_skip_5xx_greeting</a> (yes)</b>

              Skip SMTP servers that greet with a 5XX status code

              LMTP client will ignore in the LHLO response from a

              remote LMTP server.

 

              A  case insensitive list of LHLO keywords (pipelin-

              ing, starttls, auth, etc.)  that  the  LMTP  client

              will ignore in the LHLO response from a remote LMTP

              server.

 

<b>MIME PROCESSING CONTROLS</b>

       Available in Postfix version 2.0 and later:

 

       <b><a href="postconf.5.html#disable_mime_output_conversion">disable_mime_output_conversion</a> (no)</b>

              format.

 

       <b><a href="postconf.5.html#mime_boundary_length_limit">mime_boundary_length_limit</a> (2048)</b>

       Available in Postfix version 2.1 and later:

 

       <b><a href="postconf.5.html#smtp_send_xforward_command">smtp_send_xforward_command</a> (no)</b>

              WARD support.

 

<b>SASL AUTHENTICATION CONTROLS</b>

       <b><a href="postconf.5.html#smtp_sasl_auth_enable">smtp_sasl_auth_enable</a> (no)</b>

              client.

 

       <b><a href="postconf.5.html#smtp_sasl_password_maps">smtp_sasl_password_maps</a> (empty)</b>

              or sender address when sender-dependent authentica-

              tion is enabled.

 

       <b><a href="postconf.5.html#smtp_sasl_security_options">smtp_sasl_security_options</a> (noplaintext, noanonymous)</b>

 

       Available in Postfix version 2.2 and later:

 

       <b><a href="postconf.5.html#smtp_sasl_mechanism_filter">smtp_sasl_mechanism_filter</a> (empty)</b>

              nisms.

 

       Available in Postfix version 2.3 and later:

 

       <b><a href="postconf.5.html#smtp_sender_dependent_authentication">smtp_sender_dependent_authentication</a> (no)</b>

              Enable sender-dependent authentication in the Post-

              will use the appropriate credentials.

 

       <b><a href="postconf.5.html#smtp_sasl_path">smtp_sasl_path</a> (empty)</b>

 

       <b><a href="postconf.5.html#smtp_sasl_type">smtp_sasl_type</a> (cyrus)</b>

              should use for authentication.

 

<b>STARTTLS SUPPORT CONTROLS</b>

       found in the <a href="TLS_README.html">TLS_README</a> document.

 

       <b><a href="postconf.5.html#smtp_tls_security_level">smtp_tls_security_level</a> (empty)</b>

              The default SMTP TLS security level for the Postfix

              <a href="postconf.5.html#smtp_use_tls">smtp_use_tls</a>,         <a href="postconf.5.html#smtp_enforce_tls">smtp_enforce_tls</a>,         and

              <a href="postconf.5.html#smtp_tls_enforce_peername">smtp_tls_enforce_peername</a>.

 

       <b><a href="postconf.5.html#smtp_sasl_tls_security_options">smtp_sasl_tls_security_options</a>           ($<a href="postconf.5.html#smtp_sasl_security_options">smtp_sasl_secu</a>-</b>

       <b><a href="postconf.5.html#smtp_sasl_security_options">rity_options</a>)</b>

              sessions.

 

       <b><a href="postconf.5.html#smtp_starttls_timeout">smtp_starttls_timeout</a> (300s)</b>

              shake procedures.

 

       <b><a href="postconf.5.html#smtp_tls_CAfile">smtp_tls_CAfile</a> (empty)</b>

              certificate.

 

       <b><a href="postconf.5.html#smtp_tls_CApath">smtp_tls_CApath</a> (empty)</b>

              verify a remote SMTP server certificate.

 

       <b><a href="postconf.5.html#smtp_tls_cert_file">smtp_tls_cert_file</a> (empty)</b>

              in PEM format.

 

       <b><a href="postconf.5.html#smtp_tls_mandatory_ciphers">smtp_tls_mandatory_ciphers</a> (medium)</b>

              client will use with mandatory TLS encryption.

 

       <b><a href="postconf.5.html#smtp_tls_exclude_ciphers">smtp_tls_exclude_ciphers</a> (empty)</b>

              levels.

 

       <b><a href="postconf.5.html#smtp_tls_mandatory_exclude_ciphers">smtp_tls_mandatory_exclude_ciphers</a> (empty)</b>

              tory TLS security levels.

 

       <b><a href="postconf.5.html#smtp_tls_dcert_file">smtp_tls_dcert_file</a> (empty)</b>

              in PEM format.

 

       <b><a href="postconf.5.html#smtp_tls_dkey_file">smtp_tls_dkey_file</a> ($<a href="postconf.5.html#smtp_tls_dcert_file">smtp_tls_dcert_file</a>)</b>

              in PEM format.

 

       <b><a href="postconf.5.html#smtp_tls_key_file">smtp_tls_key_file</a> ($<a href="postconf.5.html#smtp_tls_cert_file">smtp_tls_cert_file</a>)</b>

              in PEM format.

 

       <b><a href="postconf.5.html#smtp_tls_loglevel">smtp_tls_loglevel</a> (0)</b>

              TLS activity.

 

       <b><a href="postconf.5.html#smtp_tls_note_starttls_offer">smtp_tls_note_starttls_offer</a> (no)</b>

              for that server.

 

       <b><a href="postconf.5.html#smtp_tls_policy_maps">smtp_tls_policy_maps</a> (empty)</b>

              Optional lookup tables with the Postfix SMTP client

              TLS security policy by next-hop destination; when a

              obsolete <a href="postconf.5.html#smtp_tls_per_site">smtp_tls_per_site</a> parameter.

 

       <b><a href="postconf.5.html#smtp_tls_mandatory_protocols">smtp_tls_mandatory_protocols</a> (SSLv3, TLSv1)</b>

 

              The verification depth for remote SMTP server  cer-

              tificates.

 

              for the "secure" TLS security level.

 

       <b><a href="postconf.5.html#smtp_tls_session_cache_database">smtp_tls_session_cache_database</a> (empty)</b>

              SMTP client TLS session cache.

 

       <b><a href="postconf.5.html#smtp_tls_session_cache_timeout">smtp_tls_session_cache_timeout</a> (3600s)</b>

              for the "verify" TLS security level.

 

       <b><a href="postconf.5.html#tls_daemon_random_bytes">tls_daemon_random_bytes</a> (32)</b>

              number generator (PRNG).

 

       <b><a href="postconf.5.html#tls_high_cipherlist">tls_high_cipherlist</a></b>

              ciphers.

 

       <b><a href="postconf.5.html#tls_low_cipherlist">tls_low_cipherlist</a> (ALL:!EXPORT:+RC4:@STRENGTH)</b>

              ciphers.

 

       <b><a href="postconf.5.html#tls_export_cipherlist">tls_export_cipherlist</a> (ALL:+RC4:@STRENGTH)</b>

              The OpenSSL cipherlist for "EXPORT" or higher grade

              ciphers.

 

              that provide authentication without encryption.

 

       Available in Postfix version 2.4 and later:

 

       <b><a href="postconf.5.html#smtp_sasl_tls_verified_security_options">smtp_sasl_tls_verified_security_options</a></b>

       <b>($<a href="postconf.5.html#smtp_sasl_tls_security_options">smtp_sasl_tls_security_options</a>)</b>

              sessions with a verified server certificate.

 

<b>OBSOLETE STARTTLS CONTROLS</b>

       bility with Postfix versions before 2.3. Support for these

       will be removed in a future release.

 

       <b><a href="postconf.5.html#smtp_use_tls">smtp_use_tls</a> (no)</b>

              the mail in the clear.

 

       <b><a href="postconf.5.html#smtp_enforce_tls">smtp_enforce_tls</a> (no)</b>

              clear.

 

       <b><a href="postconf.5.html#smtp_tls_enforce_peername">smtp_tls_enforce_peername</a> (yes)</b>

              remote SMTP server hostname matches the information

              in the remote SMTP server certificate.

 

       <b><a href="postconf.5.html#smtp_tls_per_site">smtp_tls_per_site</a> (empty)</b>

              Optional lookup tables with the Postfix SMTP client

              remote SMTP server hostname.

 

       <b><a href="postconf.5.html#smtp_tls_cipherlist">smtp_tls_cipherlist</a> (empty)</b>

<b>RESOURCE AND RATE CONTROLS</b>

       <b><a href="postconf.5.html#smtp_destination_concurrency_limit">smtp_destination_concurrency_limit</a>      ($<a href="postconf.5.html#default_destination_concurrency_limit">default_destina</a>-</b>

       <b><a href="postconf.5.html#default_destination_concurrency_limit">tion_concurrency_limit</a>)</b>

              transport.

 

       <b><a href="postconf.5.html#smtp_destination_recipient_limit">smtp_destination_recipient_limit</a>        ($<a href="postconf.5.html#default_destination_recipient_limit">default_destina</a>-</b>

       <b><a href="postconf.5.html#default_destination_recipient_limit">tion_recipient_limit</a>)</b>

              the smtp message delivery transport.

 

       <b><a href="postconf.5.html#smtp_connect_timeout">smtp_connect_timeout</a> (30s)</b>

              connection,  or  zero  (use  the  operating  system

              built-in time limit).

 

       <b><a href="postconf.5.html#smtp_helo_timeout">smtp_helo_timeout</a> (300s)</b>

              response.

 

       <b><a href="postconf.5.html#lmtp_lhlo_timeout">lmtp_lhlo_timeout</a> (300s)</b>

              command,  and  for  receiving  the  initial  server

              response.

 

              command, and for receiving the server response.

 

       <b><a href="postconf.5.html#smtp_mail_timeout">smtp_mail_timeout</a> (300s)</b>

              response.

 

       <b><a href="postconf.5.html#smtp_rcpt_timeout">smtp_rcpt_timeout</a> (300s)</b>

              response.

 

       <b><a href="postconf.5.html#smtp_data_init_timeout">smtp_data_init_timeout</a> (120s)</b>

              response.

 

       <b><a href="postconf.5.html#smtp_data_xfer_timeout">smtp_data_xfer_timeout</a> (180s)</b>

              message content.

 

       <b><a href="postconf.5.html#smtp_data_done_timeout">smtp_data_done_timeout</a> (600s)</b>

              ".", and for receiving the server response.

 

       <b><a href="postconf.5.html#smtp_quit_timeout">smtp_quit_timeout</a> (300s)</b>

              command, and for receiving the server response.

 

       Available in Postfix version 2.1 and later:

              lookups, or zero (no limit).

 

       <b><a href="postconf.5.html#smtp_mx_session_limit">smtp_mx_session_limit</a> (2)</b>

              back <a href="postconf.5.html#relayhost">relay host</a>, or zero (no limit).

 

       <b><a href="postconf.5.html#smtp_rset_timeout">smtp_rset_timeout</a> (20s)</b>

              command, and for receiving the server response.

 

       Available in Postfix version 2.2 and earlier:

       Available in Postfix version 2.2 and later:

 

       <b><a href="postconf.5.html#smtp_connection_cache_destinations">smtp_connection_cache_destinations</a> (empty)</b>

              specified destinations.

 

       <b><a href="postconf.5.html#smtp_connection_cache_on_demand">smtp_connection_cache_on_demand</a> (yes)</b>

              destination has a high volume of mail in the active

              queue.

 

 

       <b><a href="postconf.5.html#smtp_connection_cache_time_limit">smtp_connection_cache_time_limit</a> (2s)</b>

              When SMTP connection caching is enabled, the amount

              open before it is closed.

 

       Available in Postfix version 2.3 and later:

 

       <b><a href="postconf.5.html#connection_cache_protocol_timeout">connection_cache_protocol_timeout</a> (5s)</b>

              receive operations.

 

<b>TROUBLE SHOOTING CONTROLS</b>

       <b><a href="postconf.5.html#debug_peer_level">debug_peer_level</a> (2)</b>

              <a href="postconf.5.html#debug_peer_list">debug_peer_list</a> parameter.

 

       <b><a href="postconf.5.html#debug_peer_list">debug_peer_list</a> (empty)</b>

              in $<a href="postconf.5.html#debug_peer_level">debug_peer_level</a>.

 

       <b><a href="postconf.5.html#error_notice_recipient">error_notice_recipient</a> (postmaster)</b>

              resource, software or protocol errors.

 

       <b><a href="postconf.5.html#internal_mail_filter_classes">internal_mail_filter_classes</a> (empty)</b>

              <a href="postconf.5.html#non_smtpd_milters">non_smtpd_milters</a>, <a href="postconf.5.html#header_checks">header_checks</a> and <a href="postconf.5.html#body_checks">body_checks</a>.

 

       <b><a href="postconf.5.html#notify_classes">notify_classes</a> (resource, software)</b>

              postmaster.

 

<b>MISCELLANEOUS CONTROLS</b>

       <b><a href="postconf.5.html#best_mx_transport">best_mx_transport</a> (empty)</b>

              when it detects a "mail loops back to myself" error

              condition.

 

       <b><a href="postconf.5.html#config_directory">config_directory</a> (see 'postconf -d' output)</b>

              <a href="master.5.html">master.cf</a> configuration files.

 

       <b><a href="postconf.5.html#daemon_timeout">daemon_timeout</a> (18000s)</b>

              built-in watchdog timer.

 

       <b><a href="postconf.5.html#delay_logging_resolution_limit">delay_logging_resolution_limit</a> (2)</b>

              point when logging sub-second delay values.

 

       <b><a href="postconf.5.html#disable_dns_lookups">disable_dns_lookups</a> (no)</b>

              clients.

 

       <b><a href="postconf.5.html#inet_interfaces">inet_interfaces</a> (all)</b>

              tem receives mail on.

 

       <b><a href="postconf.5.html#inet_protocols">inet_protocols</a> (ipv4)</b>

              when making or accepting connections.

 

       <b><a href="postconf.5.html#ipc_timeout">ipc_timeout</a> (3600s)</b>

              over an internal communication channel.

 

       <b><a href="postconf.5.html#lmtp_tcp_port">lmtp_tcp_port</a> (24)</b>

              connects to.

 

       <b><a href="postconf.5.html#max_idle">max_idle</a> (100s)</b>

 

       <b><a href="postconf.5.html#max_use">max_use</a> (100)</b>

 

       <b><a href="postconf.5.html#process_id">process_id</a> (read-only)</b>

              The  process  ID  of  a  Postfix  command or daemon

              that can't be found or that are unreachable.

 

<b>SEE ALSO</b>

       <a href="qmgr.8.html">qmgr(8)</a>, queue manager

       <a href="bounce.8.html">bounce(8)</a>, delivery status reports

       <a href="scache.8.html">scache(8)</a>, connection cache server

       SuSE Rhein/Main AG

       65760 Eschborn, Germany

 

       TLS support originally by:

       Lutz Jaenicke

       BTU Cottbus

       Universitaetsplatz 3-4

       D-03044 Cottbus, Germany

 

                                                                       SMTP(8)

</pre> </body> </html>