alsyundawy · October 19, 2018 03:40
diff --git a/main.cf b/main.cf
 # this is part of my /etc/postfix/main.cf file:

 smtp_helo_timeout = 60s
 smtp_connect_timeout = 60s
 smtp_destination_concurrency_limit = 18
 smtp_destination_recipient_limit = 24
 smtpd_helo_required = yes
 smtpd_recipient_limit = 80
 smtpd_recipient_overshoot_limit = 120
 local_destination_concurrency_limit = 6
 body_checks_size_limit = 102400
 header_size_limit = 102400
 message_size_limit = 36000000
 mailbox_size_limit = 0
 queue_minfree = 122880000
 qmgr_message_active_limit = 12000
 bounce_size_limit = 150000
 in_flow_delay = 1s

 # tempfailed adapted to 3 minutes:
 queue_run_delay = 181s
 minimal_backoff_time = 181s
 maximal_backoff_time = 3601s
 maximal_queue_lifetime = 14d

 biff = no
 smtpd_delay_reject = yes
 smtpd_sender_restrictions = permit_mynetworks, reject_non_fqdn_sender, reject_unknown_sender_domain, check_sender_access hash:/etc/postfix/sender_access, permit
 smtpd_data_restrictions = reject_multi_recipient_bounce, reject_unauth_pipelining, permit

 disable_vrfy_command = yes
 strict_rfc821_envelopes = yes
 invalid_hostname_reject_code = 554
 non_fqdn_reject_code = 554
 unknown_address_reject_code = 554
 unknown_client_reject_code = 554
 unknown_hostname_reject_code = 554
 unknown_local_recipient_reject_code = 554
 unknown_virtual_alias_reject_code = 554
 unknown_virtual_mailbox_reject_code = 554
 unverified_recipient_reject_code = 554
 unverified_sender_reject_code = 554

 maps_rbl_reject_code = 451

 # tarpitting stupid spammers
 smtpd_error_sleep_time = 20
 smtpd_soft_error_limit = 2
 smtpd_hard_error_limit = 4
 smtpd_junk_command_limit = 2

 smtpd_recipient_restrictions =
    reject_non_fqdn_sender,
    reject_non_fqdn_recipient,
    reject_non_fqdn_hostname,
    reject_invalid_hostname,
     permit_mynetworks,
     permit_sasl_authenticated,
    reject_unauth_pipelining,
    reject_unknown_sender_domain,
    reject_unknown_recipient_domain,
    reject_unauth_destination,
    reject_unknown_client,
     check_client_access hash:/etc/postfix/whitelist,
     permit_dnswl_client hostkarma.junkemailfilter.com=127.0.0.1,
     permit_dnswl_client hostkarma.junkemailfilter.com=127.0.0.5,
     permit_dnswl_client list.dnswl.org,
    reject_rbl_client badconf.rhsbl.sorbs.net,
    reject_rbl_client virbl.dnsbl.bit.nl,
    reject_rhsbl_sender uribl.spameatingmonkey.net,
    reject_rhsbl_client uribl.spameatingmonkey.net,
    reject_rbl_client zen.spamhaus.org,
 #    reject_rbl_client b.barracudacentral.org,  too many false positives lately..
    reject_rbl_client hostkarma.junkemailfilter.com=127.0.0.2,
    reject_rbl_client truncate.gbudb.net,
    reject_rbl_client all.spam-rbl.fr,
    reject_rbl_client dnsbl.inps.de,
    reject_rbl_client 0spam.fusionzero.com,
     permit
	# this is part of my /etc/postfix/main.cf file:

	smtp_helo_timeout = 60s
	smtp_connect_timeout = 60s
	smtp_destination_concurrency_limit = 18
	smtp_destination_recipient_limit = 24
	smtpd_helo_required = yes
	smtpd_recipient_limit = 80
	smtpd_recipient_overshoot_limit = 120
	local_destination_concurrency_limit = 6
	body_checks_size_limit = 102400
	header_size_limit = 102400
	message_size_limit = 36000000
	mailbox_size_limit = 0
	queue_minfree = 122880000
	qmgr_message_active_limit = 12000
	bounce_size_limit = 150000
	in_flow_delay = 1s

	# tempfailed adapted to 3 minutes:
	queue_run_delay = 181s
	minimal_backoff_time = 181s
	maximal_backoff_time = 3601s
	maximal_queue_lifetime = 14d

	biff = no
	smtpd_delay_reject = yes
	smtpd_sender_restrictions = permit_mynetworks, reject_non_fqdn_sender, reject_unknown_sender_domain, check_sender_access hash:/etc/postfix/sender_access, permit
	smtpd_data_restrictions = reject_multi_recipient_bounce, reject_unauth_pipelining, permit

	disable_vrfy_command = yes
	strict_rfc821_envelopes = yes
	invalid_hostname_reject_code = 554
	non_fqdn_reject_code = 554
	unknown_address_reject_code = 554
	unknown_client_reject_code = 554
	unknown_hostname_reject_code = 554
	unknown_local_recipient_reject_code = 554
	unknown_virtual_alias_reject_code = 554
	unknown_virtual_mailbox_reject_code = 554
	unverified_recipient_reject_code = 554
	unverified_sender_reject_code = 554

	maps_rbl_reject_code = 451

	# tarpitting stupid spammers
	smtpd_error_sleep_time = 20
	smtpd_soft_error_limit = 2
	smtpd_hard_error_limit = 4
	smtpd_junk_command_limit = 2

	smtpd_recipient_restrictions =
	reject_non_fqdn_sender,
	reject_non_fqdn_recipient,
	reject_non_fqdn_hostname,
	reject_invalid_hostname,
	permit_mynetworks,
	permit_sasl_authenticated,
	reject_unauth_pipelining,
	reject_unknown_sender_domain,
	reject_unknown_recipient_domain,
	reject_unauth_destination,
	reject_unknown_client,
	check_client_access hash:/etc/postfix/whitelist,
	permit_dnswl_client hostkarma.junkemailfilter.com=127.0.0.1,
	permit_dnswl_client hostkarma.junkemailfilter.com=127.0.0.5,
	permit_dnswl_client list.dnswl.org,
	reject_rbl_client badconf.rhsbl.sorbs.net,
	reject_rbl_client virbl.dnsbl.bit.nl,
	reject_rhsbl_sender uribl.spameatingmonkey.net,
	reject_rhsbl_client uribl.spameatingmonkey.net,
	reject_rbl_client zen.spamhaus.org,
	# reject_rbl_client b.barracudacentral.org, too many false positives lately..
	reject_rbl_client hostkarma.junkemailfilter.com=127.0.0.2,
	reject_rbl_client truncate.gbudb.net,
	reject_rbl_client all.spam-rbl.fr,
	reject_rbl_client dnsbl.inps.de,
	reject_rbl_client 0spam.fusionzero.com,
	permit