In the server that I’m transitioning from, I also use Postfix. I use sqlgrey 1.7.6 (http://sqlgrey.sourceforge.net) to reduce spam. Sqlgrey has significantly reduced spam for my customers, so I’m now looking to add it to my Virtualmin server as well.
I’ve looked at the main.cf and see that it has relatively few entries in it compared to my non-Virtualmin server. This makes me also think that I can improve Virtualmin’s configuration to improve security and reduce spam. If anyone would like to share what they did with Virtualmin to have a highly-effective Postfix configuration, I’d very much like to hear what you have to say.
Let me start this sharing with a few items in my main.cf. First, here is what I find in my present main.cf:[code:1]smtpd_recipient_restrictions =
reject_unauth_destination[/code:1]Here is some of what I use on my non-Virtualmin server:[code:1]smtpd_recipient_restrictions =
smtpd_delay_reject = yes
smtpd_helo_required = yes
smtpd_data_restrictions = reject_unauth_pipelining
smtpd_etrn_restrictions = reject
[/code:1]Note in particular the line check_policy_service above. This is the line that invokes sqlgrey spam reduction and is very successful in reducing spam. I haven’t updated my main.cf in some time, so some of the info above might need updating as well. Of course, I’ll need to not use mysql on my Virtualmin servers.
Will I need to make the changes directly in the main.cf file, or is there any Virtualmin UI that I should be using to instrument these changes? It’d make a nice addition if Virtualmin could help make the Postfix system as strong as it can be with respect to spam and security.
I’d appreciate any corrections or suggestions to the above. Also, any additional suggestions for Virtualmin configuration to improve Postfix security and anti-spam efficiency will be appreciated!