Hi,
I am trying to convert an existing smtpd configuration to the new syntax
in 6.4 snapshot from last week or so and have a question about that.
The configuration has been converted but not actively tested yet. All I
do right now is 'smtpd -f /etc/mail/newconfig -n' and I am getting the
following reply back:
/etc/mail/smtpd.conf_new:30: table "unwantedsenders" may not be used for
mail-from lookups
/etc/mail/smtpd.conf_new:32: table "vdomains" may not be used for 'for' lookups
/etc/mail/smtpd.conf_new:34: table "vdomains" may not be used for 'for' lookups
The config looks as follows:
'a few pki lines for certs'
.
.
.
table aliases file:/etc/mail/aliases
table vusers file:/etc/mail/vusers
table vdomains file:/etc/mail/vdomains
table unwantedsenders file:/etc/mail/unwantedsenders
table recipients file:/etc/mail/recipients
listen on lo0
listen on lo0 port 10026 tag SPAM_CHECKED mask-src #after spamassassin check
listen on lo0 port 10028 tag DKIM_POST mask-src #for outbound emails after
DKIM signing
listen on egress tls pki domain1 auth-optional
listen on egress port submission tls-require pki domain1 auth mask-src
action "lmtp" lmtp "/var/dovecot/lmtp"
action "lmtp-vusers" lmtp "/var/dovecot/lmtp" virtual <vusers>
action "lmtp-alias" lmtp "/var/dovecot/lmtp" alias <aliases>
action "relay_dkim" relay host smtp://127.0.0.1:10027 #send to dkim for signing
action "check_spam" relay host smtp://127.0.0.1:10025 #send to spamassassin
action "relay" relay
match from any mail-from <unwantedsenders> for any reject
match from local for local action "lmtp"
match tag SPAM_CHECKED for domain <vdomains> action "lmtp-vusers"
match tag SPAM_CHECKED for local action "lmtp-alias"
match from any for domain <vdomains> rcpt-to <recipients> action "check_spam"
match tag DKIM_POST for any action "relay"
match auth from any for any action "relay_dkim"
The man pages state for the mail-from option of a match rule:
[!] mail-from sender | <sender>
Specify that transactions's MAIL FROM should match the string or list table
sender.
or similarily the 'for domain' part:
[!] for domain domain | <domain>
Specify that session may address the string or list table domain.
Also Gille is using the same rules in his example config on
https://poolp.org/posts/2018-05-21/switching-to-opensmtpd-new-config/
So, why do I get a message that the tables 'may' not be used? I assume
they will be used, but why the message? Are they deprecated? Another
change coming?
On a general note I am having trouble getting my head around the new
config style. It was possible for me using the method outlined by Gille
in his blog post. But if I had to start from scratch - I would likely give up.
The problem for me is that I am not constantly working on the
smtpd config. So I forget things and have to work hard to get my head
back how this is supposed to work. This new config style doesn't make it
easier in my opinion. I will stick with opensmtpd for now and probably
see the things differently in a year. Let's see...
regards
Lars
--
You received this mail because you are subscribed to [email protected]
To unsubscribe, send a mail to: [email protected]
