/etc/mail/smtpd.conf

Exemple de configuration avec gestion de plusieurs domaines.

Exemple 1 (rspamd)

# install :
#   opensmtpd-filter-rspamd
#   opensmtpd-filter-senderscore-

table aliases "/etc/mail/aliases"
table domains "/etc/mail/domains"
table passwd "/etc/mail/passwd"
table virtuals "/etc/mail/virtuals"

pki chezmoi.tld key "/etc/ssl/private/chezmoi.tld.key"
pki chezmoi.tld cert "/etc/ssl/chezmoi.tld.crt"
pki domaine2.net key "/etc/ssl/private/domaine2.net.key"
pki domaine2.net cert "/etc/ssl/domaine2.net.crt"
pki autredomaine.xyz key "/etc/ssl/private/autredomaine.xyz.key"
pki autredomaine.xyz cert "/etc/ssl/autredomaine.xyz.crt"
# certificat par defaut
pki "*" key "/etc/ssl/private/chezmoi.tld.key"
pki "*" cert "/etc/ssl/chezmoi.tld.crt"

filter senderscore \
         proc-exec "filter-senderscore -junkBelow 70 -slowFactor 2000"
filter rspamd proc-exec "filter-rspamd"

## LISTEN ##
# RECEPTION DE MESSAGES
listen on all tls pki chezmoi.tld \
    filter { senderscore, rspamd }
# ENVOI DE MESSAGES #
listen on all port submission tls-require pki chezmoi.tld auth <passwd> \
    filter rspamd

## ACTIONS ##
action "relay" relay
action relaybackup relay backup tls helo "ybad.name"
action "local_mail" maildir alias <aliases>
action virtual_maildir maildir "/home/_vmail/%{dest.domain}/%{dest.user}/Maildir" junk virtual <virtuals>

## MATCH ##
# RECEPTION
match from any for domain <domains> action virtual_maildir
match from any for local action local_mail

# ENVOI
# backup
match from any for domain friend.eu action relaybackup

match auth from any for any action "relay"
match for any action "relay"

Exemple 2 (spamassassin + dkimproxy)

# Configuration generale
## Tables 
table aliases "/etc/mail/aliases"
table passwd "/etc/mail/passwd"
table virtuals "/etc/mail/virtuals"
table domains "/etc/mail/domains"

## Certificats
pki chezmoi.tld key "/etc/ssl/private/chezmoi.tld.key"
pki chezmoi.tld cert "/etc/ssl/chezmoi.tld.crt"

## options sur la file d'attente
queue compression
queue encryption 7dbecabecabeca45bce4aebc

filter senderscore \
         proc-exec "filter-senderscore -junkBelow 70 -slowFactor 2000"

### Ecoute pour messages signes avec dkimproxy
listen on lo0 port 10028 tag DKIM   
### Messages verifies par spamassassin
listen on lo0 port 10026 tag SPAMASSASSIN

### Reception
listen on all tls pki chezmoi.tld filter { senderscore }
### Envoi avec client de messagerie
listen on all port submission tls-require pki chezmoi.tld auth <passwd> 

# ACTIONS
action "envoi" relay 
action dkimproxy relay host smtp://127.0.0.1:10027 
action spamassassin relay host smtp://127.0.0.1:10025 

action local_mail maildir alias <aliases>

action relaybackup relay backup mx "chezmoi.tld" helo "chezmoi.tld"

action virtual_maildir maildir "/var/vmail/%{dest.domain}/%{dest.user}/Maildir" junk virtual <virtuals>

# Correspondances
## Reception
### Message pour les utilisateurs locaux
match for local action local_mail
### Message pour les utilisateurs virtuels
match tag SPAMASSASSIN from any for domain <domains> action virtual_maildir
### Messages a faire verifier par spamassassin
match from any for domain <domains> action spamassassin

## Envoi
### Mail sortant portant une signature DKIM
match tag DKIM for any action "envoi"
match auth tag DKIM from any for any action "envoi"

### backup pour les copains
match from any for domain copain.eu action relaybackup

### Mail en envoi pas encore signe avec DKIM
match auth from any for any action dkimproxy
match for any action dkimproxy

/etc/mail/domains

Indiquez ici tous vos champs MX.

chezmoi.tld 
domaine2.net 
autredomaine.xyz
leadership