mail_owner = postfix
setgid_group = postdrop
-#myhostname = host.domain.tld
+myhostname = ipfire.localdomain
myorigin = $myhostname
inet_interfaces = all
#proxy_interfaces =
-mydestination = $myhostname, localhost.$mydomain, localhost, mysql:/etc/postfix/mysql-mydestination.cf
+mydestination = $myhostname, localhost, mysql:/etc/postfix/mysql-mydestination.cf
unknown_local_recipient_reject_code = 550
mynetworks_style = host
#in_flow_delay = 1s
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
-#recipient_delimiter = +
+recipient_delimiter = +
mailbox_transport = cyrus
+cyrus_destination_recipient_limit=1
header_checks = regexp:/etc/postfix/header_checks
#fast_flush_domains = $relay_domains
#local_destination_concurrency_limit = 2
#default_destination_concurrency_limit = 20
-virtual_alias_maps = hash:/etc/postfix/virtual, mysql:/etc/postfix/mysql-virtual.cf
-sender_canonical_maps = hash:/etc/postfix/canonical, mysql:/etc/postfix/mysql-canonical.cf
+virtual_alias_maps = mysql:/etc/postfix/mysql-virtual.cf
+sender_canonical_maps = mysql:/etc/postfix/mysql-canonical.cf
+
+smtpd_sasl_type = cyrus
+smtpd_sasl_auth_enable = yes
+smtpd_sasl_security_options = noanonymous
+smtpd_sasl_local_domain = $myhostname
+broken_sasl_auth_clients = yes
+
+#smtp_sasl_password_maps = hash:/etc/postfix/sasl_passwd
+
+#content_filter=amavis:[127.0.0.1]:10024
+
+smtpd_helo_required = yes
+mime_header_checks=pcre:/etc/postfix/body_checks
+smtpd_recipient_restrictions =
+ reject_invalid_hostname,
+ #reject_non_fqdn_hostname,
+ reject_non_fqdn_sender,
+ reject_non_fqdn_recipient,
+ reject_unknown_sender_domain,
+ reject_unknown_recipient_domain,
+ reject_unauth_pipelining,
+ permit_mynetworks,
+ permit_sasl_authenticated,
+ reject_unauth_destination,
+ reject_rbl_client zombie.dnsbl.sorbs.net,
+ reject_rbl_client opm.blitzed.org,
+ reject_rbl_client list.dsbl.org,
+ reject_rbl_client sbl.spamhaus.org,
+ permit
+