Talk:HowTos/Complete Postfix
This solution has a big disadvantage: Postfix only checks for the domain. As soon as the domain is correct, the mail is accepted, which leads to bounces if the email address doesn't exists.
This behaviour can be used to launch DOS-Attacks on other mail servers. Imagine you send a email with 500 CC's with correct domain but non existing user part. The result is that you get 500 bounces to the reply-to address.
So my first step was to introduce a check for the local address to exist which is quite easy:
local_recipient_maps = $alias_maps, $transport_maps
Thus all non existing email addresses won't be accepted anymore.
One thing that is missing for me is that the alias processing is done inside Scalix. As I want to use DSPAM, I would prefer to do the Alias processing already inside postfix, so that i can guarantie that only Mails to the primary Mail addresses ( the original Users ) will be sent to Scalix.
As soon as I've sorted out the correct Alias setting for postfix I'll post them here
Have fun Marc
Authentication
I followed Marco's steps to set up authentication on my Postfix MTA.
See below:
Addtion ( by Marco ):
If you want to check your outgoing mails through the email address just change the ldap_filter to:
ldap_filter: mail=%u
moreover you need to append -r to FLAGS under:
(Debian) /etc/default/saslauthd (RHE) /etc/sysconfig/saslauthd
e.g. FLAGS="-O /etc/postfix/saslauthd.conf -c -r"
It is easier for outlook users, so they only have to check on that the outgoing smtp requires authentification and can use the same values as for recieving mails.
The big problem is now the users cannot send mail through web access. After going through my mail.log I found out that scalix tries to authenticate with the omUlAuthid attribute as username. But postfix looks for the mail attribute in the ldap directory.
Well, I didn't take the time to fix it yet. A little hack on the scalix preferences should make it but I don't know where to search. Maybe someone in this community have already any solution?
