Talk:Postfix

Default USE flags
Why is PostgreSQL recommended? In most mail I have seen there is no SQL involved whatsoever. —a3li 20:07, 23 November 2011 (UTC)


 * The useflag? Well in this basic postfix setup, you don't really need any database backend, this much is true. I actually wrote/relocated this page as a sub-page from Complete Virtual Mail Server (which will link to the postfix installation).
 * The reason for a database backend? Be it ldap, postgres, mysql etc? Easy, to have mailboxes independant of local 'passwd' users. I do think I stated that it was recommended, if wanting to do more with postfix then just a simple local only mailserver. The flag won't hurt btw, but yes, if only a local postfix install for a few users is required, on a single domain, then strip this flag.
 * -- Oliver 22:41, 24. Nov. 2011 (UTC)

USE flags and bits
Couple of points/questions:
 * hardened USE flag is not recommended. It is just a hack to get around a hardened-gcc-3.4.6 bug.  You only need it if you are on hardened profile and using hardened-gcc-3.4.6.  You should not need to turn it on manually.
 * vda USE flag is certainly not recommended. VDA patch does not play nicely at edge cases.
 * soft_bounce should only be turned on during testing. Perhaps a note to comment it out during production would be prudent.
 * -v verbose flag in master.cf should not be in general turned on. It does not provide any useful info -unless you are debugging postfix- and makes it rather slow.
 * address extensions is mainly used to deliver email to the correct folder (rather than all email to INBOX). Perhaps it should be more clear.
 * What does "When Postfix completes merging and the mailbox USE flag is set" mean? There is no mailbox USE flag.

OK to edit? Eras


 * Yes, if this still applies, make the changes. Thanks! --Maffblaster (talk) 00:08, 4 May 2017 (UTC)

Security issues
telnet from another box does not explicitly warn that telnet sends passwords in plain text, and is a BAD IDEA to preform these tests.

also a section should be added noting that http://toolbar.netcraft.com/site_report will tell you if your domain/ip has been blacklisted for spam, and if so contains links to un-blacklist. (i went through with these problems for centos sendmail, though they are applicable to gentoo postfix, and other mtas.) 666threesixes666 (talk) 04:35, 22 December 2013 (UTC)


 * Then add it. --Maffblaster (talk) 00:08, 4 May 2017 (UTC)

SSL/TLS
this page needs self signed ssl & tls, & certificate authority signed ssl & tls instructions. 666threesixes666 (talk) 01:09, 29 June 2014 (UTC)


 * Then add it. --Maffblaster (talk) 00:05, 4 May 2017 (UTC)

mxtoolbox
mxtoolbox should be noted for auditing purposes.

http://mxtoolbox.com/

666threesixes666 (talk) 01:09, 29 June 2014 (UTC)


 * Then note it. --Maffblaster (talk) 00:06, 4 May 2017 (UTC)

raw headers
it should be noted how to email your self at gmail.com look at email, click upside down pyramid top right of message, show original to get raw header information from messages. 666threesixes666 (talk) 01:09, 29 June 2014 (UTC)


 * Then note it. --Maffblaster (talk) 00:06, 4 May 2017 (UTC)

spf
it should be noted how to properly setup spf dns entries. 666threesixes666 (talk) 01:09, 29 June 2014 (UTC)


 * Then note it. --Maffblaster (talk) 00:07, 4 May 2017 (UTC)