Ignore:
Timestamp:
Aug 18, 2013, 12:52:59 AM (9 years ago)
Author:
andersk
Message:
Stop eating mail to reserved addresses at non-scripts domains

Instead of eating
{abuse,hostmaster,noc,postmaster,security}@every-domain, use LDAP
magic to capture these addresses only at scripts vhosts.

The following CoS templates have been added to LDAP:

dn: cn=scriptsReservedMailTemplate,ou=VirtualHosts,dc=scripts,dc=mit,dc=edu
cn: scriptsReservedMailTemplate
objectClass: top
objectClass: cosTemplate
objectClass: extensibleObject
scriptsreservedmail: security
scriptsreservedmail: postmaster
scriptsreservedmail: noc
scriptsreservedmail: hostmaster
scriptsreservedmail: abuse

dn: cn=scriptsReservedMailCoS,ou=VirtualHosts,dc=scripts,dc=mit,dc=edu
cn: scriptsReservedMailCoS
objectClass: top
objectClass: ldapSubEntry
objectClass: cosSuperDefinition
objectClass: cosPointerDefinition
costemplatedn: cn=scriptsReservedMailTemplate,ou=VirtualHosts,dc=scripts,dc=mit,dc=edu
cosAttribute: scriptsReservedMail operational

Location:
trunk/server/fedora/config/etc/postfix
Files:
1 added
2 edited

Legend:

Unmodified
Added
Removed
  • trunk/server/fedora/config/etc/postfix/main.cf

    r2396 r2460  
    3030mail_owner = postfix
    3131virtual_alias_domains = hash:/etc/postfix/virtual, regexp:/etc/postfix/virtual_re, ldap:/etc/postfix/virtual-alias-domains-ldap.cf
    32 virtual_alias_maps = hash:/etc/postfix/virtual, regexp:/etc/postfix/virtual_re, ldap:/etc/postfix/virtual-alias-maps-ldap.cf
     32virtual_alias_maps = hash:/etc/postfix/virtual, regexp:/etc/postfix/virtual_re, ldap:/etc/postfix/virtual-alias-maps-ldap-reserved.cf, ldap:/etc/postfix/virtual-alias-maps-ldap.cf
    3333data_directory = /var/lib/postfix
    3434authorized_submit_users = !/etc/postfix/blocked_users, static:all
  • trunk/server/fedora/config/etc/postfix/virtual_re

    r2375 r2460  
    11/^(.*)@scripts\.mit\.edu$/ $1@scripts.mit.edu
    2 /^(abuse|hostmaster|noc|postmaster|security)@/ $1@scripts.mit.edu
     2/^(abuse|hostmaster|noc|postmaster|security)@[^@]*\.scripts\.mit\.edu$/ $1@scripts.mit.edu
    33/^(.*)@([^@]*)\.scripts\.mit\.edu$/ $2+$1
    44/^([^@]*)\.scripts\.mit\.edu$/ true
Note: See TracChangeset for help on using the changeset viewer.