[Postfix] Mise en place de la base de donnée de white/black list.

2013-07-27 20:05:03 +02:00 · 2013-07-27 20:05:03 +02:00 · c27836f832
commit c27836f832
parent befab8a77c
3 changed files with 33 additions and 31 deletions
--- a/Bundler/postfix.xml
+++ b/Bundler/postfix.xml
@ -8,6 +8,7 @@
  </Group>

  <Group name="mail-mx">
+    <Path name="/etc/postfix/postscreen_access.cidr"/>
    <Python name="/etc/postfix/master.cf"/>

    <Group name="ldap">
--- a/Python/etc/postfix/postscreen_access.cidr
+++ b/Python/etc/postfix/postscreen_access.cidr
--- a/Python/etc/postfix/main.cf
+++ b/Python/etc/postfix/main.cf
@ -288,34 +288,35 @@ if not secondary:
 if has("titanic"):
    @relayhost=[ovh.adm.crans.org]:25

-@# PostScreen configuration
-@# Access List
-@postscreen_access_list = cidr:/etc/postfix/postscreen_access.cidr
-@## Tu es blacklisté ? VTFF
-@postscreen_blacklist_action = drop
-@
-@# Bannière d'accueil multi valuée
-@postscreen_greet_banner = Bienvenue au crans, veuillez patienter quelques secondes.
-@## On fait semblant d'aller à RCPT TO, puis poubelle
-@postscreen_greet_action = enforce 
-@
-@# RBL, le retour
-@postscreen_dnsbl_sites =
-@    zen.spamhaus.org*2
-@    dnsbl.inps.de*2
-@    dnsbl.ahbl.org
-@    b.barracudacentral.org
-@
-@# Score >= 3 ? Bye bye
-@postscreen_dnsbl_threshold = 3
-@postscreen_dnsbl_action = enforce
-@
-@# Filtre utilisé par postfix, mis en amont via postscreen
-@postscreen_non_smtp_command_enable = yes
-@postscreen_non_smtp_command_action = enforce
-@
-@postscreen_bare_newline_enable = yes
-@postscreen_bare_newline_action = enforce
-@
-@postscreen_pipelining_enable = yes
-@postscreen_pipelining_action = enforce
+if mx:
+    @# PostScreen configuration
+    @# Access List
+    @postscreen_access_list = cidr:/etc/postfix/postscreen_access.cidr
+    @## Tu es blacklisté ? VTFF
+    @postscreen_blacklist_action = drop
+    @
+    @# Bannière d'accueil multi valuée
+    @postscreen_greet_banner = Bienvenue au crans, veuillez patienter quelques secondes.
+    @## On fait semblant d'aller à RCPT TO, puis poubelle
+    @postscreen_greet_action = enforce 
+    @
+    @# RBL, le retour
+    @postscreen_dnsbl_sites =
+    @    zen.spamhaus.org*2
+    @    dnsbl.inps.de*2
+    @    dnsbl.ahbl.org
+    @    b.barracudacentral.org
+    @
+    @# Score >= 3 ? Bye bye
+    @postscreen_dnsbl_threshold = 3
+    @postscreen_dnsbl_action = enforce
+    @
+    @# Filtre utilisé par postfix, mis en amont via postscreen
+    @postscreen_non_smtp_command_enable = yes
+    @postscreen_non_smtp_command_action = enforce
+    @
+    @postscreen_bare_newline_enable = yes
+    @postscreen_bare_newline_action = enforce
+    @
+    @postscreen_pipelining_enable = yes
+    @postscreen_pipelining_action = enforce