Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
cluebringer.conf [2012-06-07 13:52] – randerson | cluebringer.conf [2013-12-06 12:29] (current) – Fix heading levels rspencer | ||
---|---|---|---|
Line 1: | Line 1: | ||
- | =====[server]===== | + | ====== cluebringer.conf ====== |
- | ====protocols==== | + | ===== [server] ===== |
- | List of protocols to load, one per line | + | |
- | < | + | ==== protocols ==== |
+ | |||
+ | List of protocols to load, one per line: | ||
+ | |||
+ | < | ||
+ | protocols=<< | ||
Postfix | Postfix | ||
Bizanga | Bizanga | ||
- | EOT</ | + | EOT |
+ | </ | ||
- | ====modules==== | + | ==== modules ==== |
- | List of modules to load, one per line | + | |
- | < | + | List of modules to load, one per line: |
+ | |||
+ | < | ||
+ | modules=<< | ||
Core | Core | ||
AccessControl | AccessControl | ||
Line 19: | Line 28: | ||
Greylisting | Greylisting | ||
Quotas | Quotas | ||
- | EOT</ | + | EOT |
+ | </ | ||
+ | |||
+ | ==== user ==== | ||
+ | |||
+ | User to become after starting up: | ||
+ | |||
+ | < | ||
+ | user=root | ||
+ | </ | ||
+ | |||
+ | ==== group ==== | ||
+ | |||
+ | Group to become after starting up: | ||
+ | |||
+ | < | ||
+ | group=admins | ||
+ | </ | ||
+ | |||
+ | ==== pid_file ==== | ||
+ | |||
+ | Filename to store pid of parent process: | ||
+ | |||
+ | < | ||
+ | # | ||
+ | </ | ||
+ | |||
+ | ==== cache_file ==== | ||
+ | |||
+ | Filename to store cache: | ||
+ | |||
+ | < | ||
+ | cache_file=/ | ||
+ | </ | ||
+ | |||
+ | ==== background ==== | ||
+ | |||
+ | Prevent cbpolicyd from going into the background: | ||
+ | |||
+ | < | ||
+ | background=no | ||
+ | </ | ||
+ | |||
+ | ==== Preforking configuration ==== | ||
+ | |||
+ | * min_server | ||
+ | * min_spare_servers | ||
+ | * max_spare_servers | ||
+ | * max_servers | ||
+ | * max_requests | ||
+ | |||
+ | One may want to use the following as a rough guideline... | ||
+ | |||
+ | * Small mailserver: | ||
+ | * Medium mailserver: 4, 4, 12, 25, 1000 | ||
+ | * Large mailserver: 8, 8, 16, 64, 1000 | ||
+ | |||
+ | < | ||
+ | min_servers=4 | ||
+ | min_spare_servers=4 | ||
+ | max_spare_servers=12 | ||
+ | max_servers=25 | ||
+ | max_requests=1000 | ||
+ | </ | ||
+ | |||
+ | ==== log_level ==== | ||
+ | |||
+ | Specify the level of logging to use when policyd is running: | ||
+ | |||
+ | < | ||
+ | log_level=2 | ||
+ | </ | ||
+ | |||
+ | Logging levels: | ||
+ | |||
+ | * 0 - Errors only | ||
+ | * 1 - Warnings and errors | ||
+ | * 2 - Notices, warnings, errors | ||
+ | * 3 - Info, notices, warnings, errors | ||
+ | * 4 - Debugging | ||
+ | |||
+ | ==== log_file ==== | ||
+ | |||
+ | File to log to instead of STDOUT: | ||
+ | |||
+ | < | ||
+ | log_file=/ | ||
+ | </ | ||
+ | |||
+ | ==== Log destination and methods ==== | ||
+ | |||
+ | Log destination for mail logs: | ||
+ | |||
+ | * main - Default. Log to policyd' | ||
+ | * syslog | ||
+ | * < | ||
+ | |||
+ | Valid methods for syslog: | ||
+ | |||
+ | * native | ||
+ | * unix - Unix socket | ||
+ | * udp - UDP socket | ||
+ | * stream | ||
+ | |||
+ | Example: unix native | ||
+ | < | ||
+ | log_mail=mail@syslog: | ||
+ | </ | ||
+ | |||
+ | Example: unix socket | ||
+ | < | ||
+ | log_mail=mail@syslog: | ||
+ | </ | ||
+ | |||
+ | Example: udp | ||
+ | < | ||
+ | log_mail=mail@syslog: | ||
+ | </ | ||
+ | |||
+ | Example: Solaris | ||
+ | < | ||
+ | log_mail=local0@syslog: | ||
+ | </ | ||
+ | |||
+ | Default: | ||
+ | < | ||
+ | log_mail=maillog | ||
+ | </ | ||
+ | |||
+ | ==== log_detail ==== | ||
+ | |||
+ | Things to log in extreme detail: | ||
+ | |||
+ | * modules | ||
+ | * tracking | ||
+ | * policies | ||
+ | * protocols | ||
+ | * bizanga | ||
+ | * cache - Log cache usage on client shutdown | ||
+ | |||
+ | There is no default for this configuration option. Options can be | ||
+ | separated by commas: | ||
+ | |||
+ | < | ||
+ | log_detail=modules, | ||
+ | </ | ||
+ | |||
+ | ==== proto ==== | ||
+ | |||
+ | Protocol to use " | ||
+ | |||
+ | < | ||
+ | proto=tcp | ||
+ | </ | ||
+ | |||
+ | ==== host ==== | ||
+ | |||
+ | IP to listen on, * for all. Blank for unix sockets. Defaults to *: | ||
+ | |||
+ | < | ||
+ | host=* | ||
+ | </ | ||
+ | |||
+ | ==== port ==== | ||
+ | |||
+ | Port to run on, in the case of a unix socket it would be the path. Defaults to 10031: | ||
+ | |||
+ | < | ||
+ | port=10031 | ||
+ | port=/ | ||
+ | </ | ||
+ | |||
+ | ==== timeout_idle ==== | ||
+ | |||
+ | Time out in communication with clients: | ||
+ | |||
+ | * Idle timeout in postfix defaults to 1015s (active connection) | ||
+ | *< | ||
+ | * Busy sockets in postfix defaults to 100s | ||
+ | *< | ||
+ | |||
+ | ==== cidr_allow/ | ||
+ | |||
+ | Comma, whitespace or semi-colon separated. Contains a CIDR block to compare the clients IP to. If cidr_allow or cidr_deny options are given, the incoming client must match a cidr_allow and not match a cidr_deny otherwise the client connection will be closed. | ||
+ | |||
+ | < | ||
+ | cidr_allow=0.0.0.0/ | ||
+ | cidr_deny= | ||
+ | </ | ||
+ | |||
+ | ===== [database] ===== | ||
+ | |||
+ | ==== DSN ==== | ||
+ | |||
+ | Database access details: | ||
+ | |||
+ | < | ||
+ | # | ||
+ | DSN=DBI: | ||
+ | # | ||
+ | # | ||
+ | </ | ||
+ | |||
+ | ==== bypass_mode ==== | ||
+ | |||
+ | What to do when there is a database connection problem: | ||
+ | |||
+ | < | ||
+ | # tempfail - Return temporary failure | ||
+ | # pass - Return success | ||
+ | bypass_mode=tempfail | ||
+ | </ | ||
+ | |||
+ | ==== bypass_timeout ==== | ||
+ | |||
+ | How many seconds before retrying a DB connection: | ||
+ | |||
+ | < | ||
+ | bypass_timeout=30 | ||
+ | </ | ||
+ | |||
+ | ==== table_prefix ==== | ||
+ | |||
+ | Table prefix to use, be sure to generate the schema with the table prefix aswell! | ||
+ | |||
+ | < | ||
+ | # | ||
+ | </ | ||
+ | |||
+ | ===== Module enabling/ | ||
+ | |||
+ | The defaults are listed below. | ||
+ | |||
+ | Access Control module: | ||
+ | |||
+ | < | ||
+ | [AccessControl] | ||
+ | enable=1 | ||
+ | </ | ||
+ | |||
+ | Accounting module: | ||
+ | |||
+ | < | ||
+ | [Accounting] | ||
+ | enable=1 | ||
+ | </ | ||
+ | |||
+ | Amavis module: | ||
+ | |||
+ | < | ||
+ | [Amavis] | ||
+ | enable=0 # Disabled by default | ||
+ | </ | ||
+ | |||
+ | CheckHelo module: | ||
+ | |||
+ | < | ||
+ | [CheckHelo] | ||
+ | enable=1 | ||
+ | </ | ||
+ | |||
+ | CheckSPF module: | ||
- | ====user==== | + | < |
- | User to become after starting up | + | [CheckSPF] |
- | < | + | enable=1 |
+ | </ | ||
- | ====group==== | + | Greylisting module: |
- | Group to become after starting up | + | |
- | < | + | |
- | ====pid_file==== | + | < |
- | Filename to store pid of parent process | + | [Greylisting] |
- | < | + | enable=1 |
+ | # | ||
+ | # | ||
+ | #blacklist_message=Greylisting in effect, sending server blacklisted | ||
+ | </ | ||
- | ====cache_file==== | + | Quotas module: |
- | Filename to store cache | + | |
- | < | + | |
- | ====background==== | + | < |
- | Prevent cbpolicyd from going into the background | + | [Quotas] |
- | < | + | enable=1 |
+ | </ |