# Global Postfix configuration file. This
# file lists only a subset of all parameters.
# For the syntax, and for a complete
# parameter list, see the postconf(5) manual
# page (command: "man 5 postconf").
#
# LOCAL PATHNAME INFORMATION
queue_directory = /var/spool/postfix
command_directory = /usr/sbin
daemon_directory = /usr/libexec/postfix
data_directory = /var/lib/postfix

# QUEUE AND PROCESS OWNERSHIP
mail_owner = postfix

# INTERNET HOST AND DOMAIN NAMES
myhostname = mail.example.net
mydomain = example.net

# RECEIVING MAIL
inet_interfaces = all
inet_protocols = all
mynetworks = 127.0.0.0/8 192.168.13.0/28
mydestination = $myhostname, mail-external.example.net, localhost.$mydomain, localhost

# REJECTING MAIL FOR UNKNOWN LOCAL USERS
unknown_local_recipient_reject_code = 550

# ALIAS DATABASE
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases

# JUNK MAIL CONTROLS
header_checks = regexp:/etc/postfix/header_checks

# SHOW SOFTWARE VERSION OR NOT
smtpd_banner = $myhostname ESMTP $mail_name

# DEBUGGING CONTROL
debug_peer_level = 2
debugger_command =
   PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
   ddd $daemon_directory/$process_name $process_id & sleep 5

# INSTALL-TIME CONFIGURATION INFORMATION
sendmail_path = /usr/sbin/sendmail.postfix
newaliases_path = /usr/bin/newaliases.postfix
mailq_path = /usr/bin/mailq.postfix
setgid_group = postdrop
html_directory = no
manpage_directory = /usr/share/man
sample_directory = /usr/share/doc/postfix-2.8.3/samples
readme_directory = /usr/share/doc/postfix-2.8.3/README_FILES

#### POSTSCREEN
# Statische Listen
postscreen_access_list = permit_mynetworks,
    cidr:/etc/postfix/postscreen_access.cidr
postscreen_blacklist_action = drop

# DNS Blackhole Lists
postscreen_dnsbl_threshold = 3
postscreen_dnsbl_sites = zen.spamhaus.org*2,
    bl.spamcop.net*1,
postscreen_dnsbl_action = enforce

# Pregreeting
postscreen_greet_banner = $smtpd_banner
postscreen_greet_action = enforce

# Weitere Postscreen-Tests
postscreen_bare_newline_enable = no
postscreen_non_smtp_command_enable = yes
postscreen_non_smtp_command_action = drop
postscreen_pipelining_enable = no