[lug] postfix localhost only

Bear Giles bgiles at coyotesong.com
Mon Jan 4 11:22:04 MST 2010 

You can always firewall port 25 on your external interfaces to prevent
inbound connections.  I think there's also a second port used with
authenticated sessions.

Not the best solution, but it's a solid fallback so you're covered even if
you accidently change the configuration in the future.

Bear

On Mon, Jan 4, 2010 at 8:38 AM, George Sexton <georges at mhsoftware.com>wrote:

> If I were doing this, then I would set inet_interfaces as described, and
> then see what breaks. Postfix has so many knobs that unless you're an
> expert
> it takes a trial and error approach.
>
> George Sexton
> MH Software, Inc.
> http://www.mhsoftware.com/
> Voice: 303 438 9585
>
>
> > -----Original Message-----
> > From: lug-bounces at lug.boulder.co.us [mailto:lug-
> > bounces at lug.boulder.co.us] On Behalf Of karl horlen
> > Sent: Saturday, January 02, 2010 5:06 PM
> > To: Boulder (Colorado) Linux Users Group -- General Mailing List
> > Subject: Re: [lug] postfix localhost only
> >
> > i'm thinking there might be something more than just that.  thanks for
> > the info.
> >
> > --- On Fri, 1/1/10, George Sexton <georges at mhsoftware.com> wrote:
> >
> > > From: George Sexton <georges at mhsoftware.com>
> > > Subject: Re: [lug] postfix localhost only
> > > To: "'Boulder (Colorado) Linux Users Group -- General Mailing List'"
> > <lug at lug.boulder.co.us>
> > > Date: Friday, January 1, 2010, 8:15 PM
> > > I would think you could just set
> > >
> > > inet_interfaces = 127.0.0.1
> > >
> > > George Sexton
> > > MH Software, Inc.
> > > http://www.mhsoftware.com/
> > > Voice: 303 438 9585
> > >
> > >
> > > > -----Original Message-----
> > > > From: lug-bounces at lug.boulder.co.us
> > > [mailto:lug-
> > > > bounces at lug.boulder.co.us]
> > > On Behalf Of karl horlen
> > > > Sent: Friday, January 01, 2010 6:16 PM
> > > > To: lug at lug.boulder.co.us
> > > > Subject: [lug] postfix localhost only
> > > >
> > > > i searched the net hi and low.  not finding what
> > > i want.
> > > >
> > > > i want to configure a postfix on a server to receive
> > > and deliver local
> > > > mail only from and to virtual accounts on the same
> > > box.  i don't want
> > > > it to relay mail destined for any domain outside the
> > > box.  and i don't
> > > > want it to accept incoming mail on any external
> > > interface or domain
> > > > outside the box.
> > > >
> > > > i found out how to do the virtual accounts
> > > online.  i can't find
> > > > anything that directly addresses what i want to
> > > do.  i've found recipes
> > > > for a bunch of more complex scenarios.  based
> > > upon that research, it
> > > > looks like there are about 3-5 config lines that are
> > > probably required
> > > > to do this but i'm not sure i'm getting it right.
> > > >
> > > > my rationale for doing this is that if i connect
> > > squirrelmail to this
> > > > postfix configuration, i can allow a close knit group
> > > of friends to
> > > > send private mail back and forth to eachother.
> > > since the server
> > > > interfaces aren't opened up to send or receive mail, i
> > > don't have to
> > > > worry about spam and a bunch of related extra
> > > stuff.  sure it's limited
> > > > in functionality, but it fits the bill for what i want
> > > to do.
> > > >
> > > > the general theory is that mail never leaves the
> > > server.  although this
> > > > isn't perfectly true, if squirrelmail is config'd for
> > > ssl, it will be
> > > > encrypted which satisfies the portion of the mail that
> > > travels over the
> > > > net.  otherwise, all mail communication lives on
> > > that single server.
> > > >
> > > > thanks
> > > >
> > > >
> > > >
> > > >
> > > > _______________________________________________
> > > > Web Page:  http://lug.boulder.co.us
> > > > Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug
> > > > Join us on IRC: irc.hackingsociety.org port=6667
> > > > channel=#hackingsociety
> > >
> > >
> > > _______________________________________________
> > > Web Page:  http://lug.boulder.co.us
> > > Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug
> > > Join us on IRC: irc.hackingsociety.org port=6667
> > > channel=#hackingsociety
> > >
> >
> >
> >
> > _______________________________________________
> > Web Page:  http://lug.boulder.co.us
> > Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug
> > Join us on IRC: irc.hackingsociety.org port=6667
> > channel=#hackingsociety
>
>
> _______________________________________________
> Web Page:  http://lug.boulder.co.us
> Mailing List: http://lists.lug.boulder.co.us/mailman/listinfo/lug
> Join us on IRC: irc.hackingsociety.org port=6667 channel=#hackingsociety
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.lug.boulder.co.us/pipermail/lug/attachments/20100104/569fd3aa/attachment.html>

More information about the LUG mailing list