File: gld.conf

package info (click to toggle)
postfix-gld 1.7-8
  • links: PTS
  • area: main
  • in suites: bullseye, buster, stretch
  • size: 480 kB
  • sloc: ansic: 1,447; sql: 169; sh: 112; makefile: 109
file content (159 lines) | stat: -rw-r--r-- 4,732 bytes parent folder | download | duplicates (6) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
 
#
# Config file for gld
#

#
# TCP Port gld should listen to (default is 2525)
#
PORT=2525

#
# Shall we bind only to loopback ? (0=No,1=Yes) (default is 1)
#
LOOPBACKONLY=1

#
# The list of networks allowed to connect to us (default is everybody)
# The format is network/cidrmask,....
# 
# comment the line to deactivate it.
#
CLIENTS=127.0.0.1/32

#
# The user used to run gld (default value is no user change)
# comment the line to deactivate it.
#
USER=postfix-gld

#
# The group used to run gld (default value is no group change)
# comment the line to deactivate it.
#
GROUP=postfix-gld

#
# Maximum simultaneous connexions (default is 100)
#
MAXCON=100

#
# How many seconds we should wait before accepting
# a mail that is in the greylist. (default is 60)
#
MINTIME=60

#
# Shall we use lightgrey option ? (0=No,1=Yes) (default is 0)
#
# The lightgrey option, mask the last octet of IP addresses
# and thus we greylist only C classes (/24) instead of individual IPs.
#
LIGHTGREY=0

#
# Shall we use the mxgrey algorithm ? (0=No,>0=Yes) (default is 0)
#
# the mxgrey algorithm is a variation of the greylist algorithm.
# When this is enabled, we allow all incoming mails from an IP address
# whatever source/destination email as long as this IP has been greylisted
# at least X time and succeded the mail resend .
#
# Example:
# The IP 1.2.3.4 sends an email from src@domain.com to user@yourdomain.com
# We greylist this mail as this IP is not yet in database and send a 450 SMTP code
# After some time, the IP re-send the mail from src@domain.com to user@yourdomain.com
# We update the db.
# Some time after the ip 1.2.3.4 sends an email from john@domain.com to fred@yourdomain.com
# We will accept this mail without any greylisting, as this ip already succeded a greylist test
# and thus seems to be a valid smtp server and not a spammer .
#
# The advantage of this method, is that it reduce the re-send time due to greylisting to
# x mail per server instead of one mail per destination .
#
# The value you provide in MXGREY is the minimum number of succesful greylists
# before accepting all mails from this MX. higher the number is, harder is to get in.
#
# This algortihm replace the old LIGHTGREYDOMAIN which was available prior version 1.6
#
MXGREY=0

#
# Shall we use the whitelist table ?  (0=No,1=Yes) (default is 1)
#
# If set to yes, then the table 'whitelist' is looked up
# each time postfix request the server
# if the email/domain/ip is in the whitelist, then the response
# will be 'dunno' .
#
# In the whitelist table, you can set the following values:
# an email: ie john@foo.tld
# a domain: ie @bar.tld
# an IP   : ie 1.2.3.4
# a subnet: ie 1.2.3
#
WHITELIST=1

#
# Shall we use a DNS based whitelist ? (default is no)
#
# To activate it, the line must be uncommented
# and the value set to the domain of the DNS whitelist.
# for example, if DNSWL is set to toto.com and we get a mail from ip a.b.c.d
# then gld will DNS lookup d.c.b.a.toto.com
# and if found allow the ip without greylisting it.
# 
#DNSWL=toto.com

#
# Shall we send a 'dunno' in case of error (mysql down,....) (0=No,1=Yes) (default is 1)
#
# Normaly, if an error occur, the server is supposed to close the connection
# and thus postfix will return a 450 Server configuration error
# if this parameter is set to 1, then the server will return 'dunno'
# and thus let postfix decide the fate of the mail.
#
ERRACCEPT=1

#
# Shall we log to the syslog (0=No,1=Yes) (default is 1)
#
SYSLOG=1

#
# If we use syslog, which facility shall we use (default is mail)
# it can only be one of the following facilities:
# daemon mail local0 local1 local2 local3 local4 local5 local6 local7
#
FACILITY=mail

#
# The Message that we display in case of reject (default is "Greylisted")
#
# If you want another SMTP return code than the default 450, just put it at
# the beginning of the message, ie: 451 You have been greylisted by gld ...
# If you don't provide any SMTP code, the default 450 will be used by postfix
#
# WARNING: if you set a custom smtp code make sure it's a 4XX code.
# if you don't provide a 4XX code, gld will ignore it and send the default 450.
# Be also warned that if you set a custom code, gld will not use defer_if_permit anymore
# but direct supplied code to postfix .
#
MESSAGE=Service temporarily unavailable, please try later

#
# Training mode activated ? (0=No,1=Yes) (default is 0)
#
# If activated, gld will do all the work but will always reply dunno to postfix
# and thus, will never greylist any mail.
# This feature is useful for testing gld performances without greylisting any mail
#
TRAINING=0

#
# SQL INFOS (defaults are localhost,myuser,mypasswd,mydb)
#
SQLHOST=localhost
SQLUSER=gld
SQLPASSWD=gld
SQLDB=gld