v13, i13: Listing 5 Postfix main.cf -- SASL/TLS directives

Article	Listing 1	Listing 2	Listing 3	Listing 4
Listing 5	Listing 6	Table 1	Table 2	aug2004.tar

Listing 5 Postfix main.cf -- SASL/TLS directives

# Enable SMTP+AUTH
smtpd_sasl_auth_enable = no
# Wheter to -require- TLS for all outbound traffic
smtp_enforce_tls = no                                           
smtp_sasl_tls_security_options = $smtp_sasl_security_options    
smtp_sasl_tls_verified_security_options = $smtp_sasl_tls_security_options
smtp_tls_CAfile = /usr/local/etc/postfix/SSL/CA/CAcert.pem
smtp_tls_CApath = /usr/local/etc/postfix/SSL/CA
smtp_tls_cert_file = /usr/local/etc/postfix/SSL/certs/mail3.mail.domain.crt
smtp_tls_key_file = /usr/local/etc/postfix/SSL/private/mail3.mail.domain.key
smtp_tls_loglevel = 0
smtp_tls_note_starttls_offer = yes
smtp_tls_per_site = dbm:/usr/local/etc/postfix/tls_per_site
smtp_tls_session_cache_database = sdbm:/usr/local/etc/postfix/smtp_scache
smtp_tls_session_cache_timeout = 3600s
smtp_use_tls = yes
# Whether to -require- TLS for all inbound smtp traffic
smtpd_enforce_tls = no
smtpd_sasl_tls_security_options = $smtpd_sasl_security_options
smtpd_starttls_timeout = 300s
smtpd_tls_CAfile = /usr/local/etc/postfix/SSL/CA/CAcert.pem
smtpd_tls_ask_ccert = no
smtpd_tls_auth_only = no
smtpd_tls_cert_file = /usr/local/etc/postfix/SSL/certs/mail3.mail.domain.crt
smtpd_tls_key_file = /usr/local/etc/postfix/SSL/private/mail3.mail.domain.key
smtpd_tls_loglevel = 0
smtpd_tls_received_header = yes
smtpd_tls_req_ccert = no
smtpd_tls_session_cache_database = sdbm:/usr/local/etc/postfix/smtpd_scache
smtpd_tls_session_cache_timeout = 3600s
smtpd_use_tls = yes
# Entropy size/source for TLS
tls_daemon_random_bytes = 32
tls_daemon_random_source = dev:/dev/urandom
tls_random_source = dev:/dev/urandom