1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
|
R�Re�ej�je�ec�ct�ti�in�ng�g U�Un�nk�kn�no�ow�wn�n L�Lo�oc�ca�al�l R�Re�ec�ci�ip�pi�ie�en�nt�ts�s w�wi�it�th�h P�Po�os�st�tf�fi�ix�x
-------------------------------------------------------------------------------
I�In�nt�tr�ro�od�du�uc�ct�ti�io�on�n
As of Postfix version 2.0, the Postfix SMTP server rejects mail for unknown
recipients in local domains (domains that match $mydestination or the IP
addresses in $inet_interfaces or $proxy_interfaces) with "User unknown in local
recipient table". This feature was optional with earlier Postfix versions.
The good news is that this keeps undeliverable mail out of your queue, so that
your mail queue is not clogged up with undeliverable MAILER-DAEMON messages.
The bad news is that it may cause mail to be rejected when you upgrade from a
Postfix system that was not configured to reject mail for unknown local
recipients.
This document describes what steps are needed in order to reject unknown local
recipients correctly.
* Configuring local_recipient_maps in main.cf
* When you need to change the local_recipient_maps setting in main.cf
* Local recipient table query format
C�Co�on�nf�fi�ig�gu�ur�ri�in�ng�g l�lo�oc�ca�al�l_�_r�re�ec�ci�ip�pi�ie�en�nt�t_�_m�ma�ap�ps�s i�in�n m�ma�ai�in�n.�.c�cf�f
The local_recipient_maps parameter specifies lookup tables with all names or
addresses of local recipients. A recipient address is local when its domain
matches $mydestination, $inet_interfaces or $proxy_interfaces. If a local
username or address is not listed in $local_recipient_maps, then the Postfix
SMTP server will reject the address with "User unknown in local recipient
table". Other interfaces such as the Postfix sendmail(1) command may still
accept an "unknown" recipient.
The default setting, shown below, assumes that you use the default Postfix
local(8) delivery agent for local delivery, where recipients are either UNIX
accounts (typically, in /etc/passwd) or local aliases (typically, in /etc/
aliases):
/etc/postfix/main.cf:
local_recipient_maps = proxy:unix:passwd.byname $alias_maps
To turn off unknown local recipient rejects by the SMTP server, specify:
/etc/postfix/main.cf:
local_recipient_maps =
That is, an empty value. With this setting, the Postfix SMTP server will not
reject mail with "User unknown in local recipient table". D�Do�on�n'�'t�t d�do�o t�th�hi�is�s o�on�n
s�sy�ys�st�te�em�ms�s t�th�ha�at�t r�re�ec�ce�ei�iv�ve�e m�ma�ai�il�l d�di�ir�re�ec�ct�tl�ly�y f�fr�ro�om�m t�th�he�e I�In�nt�te�er�rn�ne�et�t.�. W�Wi�it�th�h t�to�od�da�ay�y'�'s�s w�wo�or�rm�ms�s a�an�nd�d
v�vi�ir�ru�us�se�es�s,�, P�Po�os�st�tf�fi�ix�x w�wi�il�ll�l b�be�ec�co�om�me�e a�a b�ba�ac�ck�ks�sc�ca�at�tt�te�er�r s�so�ou�ur�rc�ce�e:�: i�it�t a�ac�cc�ce�ep�pt�ts�s m�ma�ai�il�l f�fo�or�r n�no�on�n-�-
e�ex�xi�is�st�te�en�nt�t r�re�ec�ci�ip�pi�ie�en�nt�ts�s a�an�nd�d t�th�he�en�n t�tr�ri�ie�es�s t�to�o r�re�et�tu�ur�rn�n t�th�ha�at�t m�ma�ai�il�l a�as�s "�"u�un�nd�de�el�li�iv�ve�er�ra�ab�bl�le�e"�" t�to�o
t�th�he�e o�of�ft�te�en�n f�fo�or�rg�ge�ed�d s�se�en�nd�de�er�r a�ad�dd�dr�re�es�ss�s.
W�Wh�he�en�n y�yo�ou�u n�ne�ee�ed�d t�to�o c�ch�ha�an�ng�ge�e t�th�he�e l�lo�oc�ca�al�l_�_r�re�ec�ci�ip�pi�ie�en�nt�t_�_m�ma�ap�ps�s s�se�et�tt�ti�in�ng�g i�in�n m�ma�ai�in�n.�.c�cf�f
* Problem: you don't use the default Postfix local(8) delivery agent for
domains matching $mydestination, $inet_interfaces, or $proxy_interfaces.
For example, you redefined the "local_transport" setting in main.cf.
Solution: your local_recipient_maps setting needs to specify a database
that lists all the known user names or addresses for that delivery agent.
For example, if you deliver users in $mydestination etc. domains via the
virtual(8) delivery agent, specify:
/etc/postfix/main.cf
mydestination = $myhostname localhost.$mydomain localhost ...
local_transport = virtual
local_recipient_maps = $virtual_mailbox_maps
If you don't use the local(8) or virtual(8) delivery agent for
$mydestination etc. domains, see the section "Local recipient table format"
below for a description of how the table should be populated.
* Problem: you use the mailbox_transport or fallback_transport feature of the
Postfix local(8) delivery agent in order to deliver mail to non-UNIX
recipients.
Solution: you need to add the database that lists the non-UNIX recipients:
/etc/postfix/main.cf
local_recipient_maps = proxy:unix:passwd.byname, $alias_maps,
<the database with non-UNIX recipients>
See the section "Local recipient table format" below for a description of
how the table should be populated.
* Problem: you use the luser_relay feature of the Postfix local delivery
agent.
Solution: you must disable the local_recipient_maps feature completely, so
that the Postfix SMTP server accepts mail for all local addresses:
/etc/postfix/main.cf
local_recipient_maps =
L�Lo�oc�ca�al�l r�re�ec�ci�ip�pi�ie�en�nt�t t�ta�ab�bl�le�e q�qu�ue�er�ry�y f�fo�or�rm�ma�at�t
If local_recipient_maps specifies local files, such as files in postmap(1) or
postalias(1) format, then the Postfix SMTP server generates the following
queries:
* The full recipient address. This query supports a non-default
local_transport setting with a delivery agent such as lmtp(8) or virtual
(8). See "Configuring local_recipient_maps in main.cf: for additional
guidance for what lookup tables to specify.
* The recipient address local-part. This query supports the default
local_transport setting with the UNIX-compatible local(8) delivery agent;
the Postfix SMTP server makes this query only when the recipient domain
matches $mydestination, $inet_interfaces or $proxy_interfaces.
* The recipient @domain. This query supports a non-default local_transport
setting with a delivery agent such as virtual(8); it is a wildcard for
domains that do not have a valid recipient list.
NOTES:
* A lookup table should return a non-empty result when the address exists,
and should return "not found" when the address does not exist. In
particular, a zero-length (empty) result does not count as a "not found"
result.
* When local_recipient_maps specifies a lookup table based on ldap:,
memcache:, mongodb:, mysql:, pgsql:, sqlite:, or other external database,
then the Postfix SMTP server queries that lookup table with the same
queries as described at the start of this section, and expects the same
results.
* To suppress lookups for the local-part and the @domain wild-card, specify
the d�do�om�ma�ai�in�n setting in a Postfix ldap:, memcache:, mongodb:, mysql:, pgsql:,
sqlite:, etc., database client configuration file.
* When local_recipient_maps specifies a lookup table based on pcre:, regexp:,
socketmap: or tcp:, Postfix queries that table only with the full recipient
address, and not with the local-part or the @domain wild-card.
|
