# exim4.conf acl_smtp_rcpt = check_recipient acl_smtp_data = check_message acl_smtp_vrfy = check_vrfy acl_smtp_expn = check_expn hostlist rfc1918 = 10.0.0.0/8 : 172.16.0.0/12 : 192.168.0.0/16 hostlist localadds = +rfc1918 : @ : @[] : 213.41.121.145 : localhost hostlist relay_from_hosts = +localadds : mars.example.com hostlist hosts_avoid_tls = 10.0.0.1 domainlist local_domains = @ : \ @[] : \ dbm;/var/spool/exim/db/domains.db domainlist relay_domains = dbm;/var/spool/exim/db/domains.db : autredomaine.org log_selector = \ +address_rewrite \ +all_parents \ +connection_reject \ +delay_delivery \ +delivery_size \ +dnslist_defer \ +lost_incoming_connection \ +queue_run \ +received_sender \ +received_recipients \ +retry_defer \ +sender_on_delivery \ +size_reject \ +skip_delivery \ +smtp_confirmation \ +smtp_protocol_error \ +smtp_syntax_error \ +tls_cipher \ +tls_peerdn primary_hostname = mail.example.com local_interfaces = "127.0.0.1:MON-ADDRESSE-IP" qualify_domain = example.com qualify_recipient = example.com tls_advertise_hosts = * tls_certificate = /etc/ssl/certs/mail.pem tls_privatekey = /etc/ssl/certs/mail.pem tls_dhparam = /etc/exim/dhparam.out never_users = root trusted_users = mail:list:www-data:antivirus gecos_pattern = ^([^,:]*) gecos_name = $1 ignore_bounce_errors_after = 3d auto_thaw = 4d # Si le mail fait plus de 15 Mo, on jette... message_size_limit = 15000K smtp_accept_queue_per_connection = 50 remote_max_parallel = 20 # Gestion fluide des montees en charge... deliver_queue_load_max = 10.0 queue_only_load = 5.0 system_filter = /etc/mail/exim.filter message_body_visible = 10000 perl_startup = do '/etc/exim/exim.pl'; host_lookup = 0.0.0.0/0 smtp_receive_timeout = 10m smtp_banner = "ESMTP MailServer\nWe do not allow this system to be used to send unsolicited or bulk e-mail (ie: spam)." local_scan_timeout = 3m local_scan_path = /usr/lib/exim4/sa-exim.so received_header_text = "Received: \ ${if def:sender_fullhost {from ${sender_fullhost} \ ${if def:sender_ident {(${sender_ident})}}\n\t}\ {${if def:sender_ident {from ${sender_ident} }}}}\ by ${primary_hostname} ${if def:received_for {for <$received_for>}} \ ${if def:received_protocol { with ${received_protocol} }}\ ${if def:tls_cipher {(Cipher:${tls_cipher})}}\ ${if def:tls_peerdn {(PeerDN:${tls_peerdn})}}\n\t\ id ${message_id} (Exim)" begin acl check_recipient: accept domains = +local_domains local_parts = postmaster deny message = "HELO/EHLO required by SMTP RFC" condition = ${if eq{$sender_helo_name}{}{yes}{no}} deny message = Only one receipient accepted for NULL sender senders = : condition = ${if >{$rcpt_count}{1} {1}} deny message = "This domain is listed as a spam source. Contact postmaster@example.com for more information." hosts = partial-dbm;/var/spool/exim/db/junk.db deny message = "Your email is listed as a spam source. Contact postmaster@example.com for more information." senders = *@partial-dbm;/var/spool/exim/db/junk.db : dbm;/var/spool/exim/db/junk.db accept sender_domains = +relay_domains:+local_domains accept hosts = +localadds:+relay_from_hosts accept domains = +local_domains accept domains = +relay_domains deny message = relay not permitted check_message: accept check_vrfy: accept hosts = +localadds deny message = VRFY not allowed from this host, sorry check_expn: accept hosts = +localadds deny message = EXPN not allowed from this host, sorry # REWRITE CONFIGURATION begin rewrite *@*.example.com $1@example.com Ffrs # ROUTERS CONFIGURATION begin routers lookuphost: driver = dnslookup domains = ! +local_domains transport = smtp no_more system_aliases: driver = redirect allow_defer allow_fail data = ${expand:${lookup{$local_part@$domain}dbm*@{/var/spool/exim/db/aliases.db}}} file_transport = address_file pipe_transport = address_pipe local_part_suffix = +* local_part_suffix_optional retry_use_local_part userforward: driver = redirect allow_filter check_local_user file = $home/.forward local_part_suffix = +* local_part_suffix_optional file_transport = address_file group = 8 pipe_transport = address_pipe reply_transport = address_reply no_verify #user=8, real_local: driver = accept check_local_user transport = local_delivery local_part_suffix = +* local_part_suffix_optional #prefix = real-, smart: driver = redirect allow_defer allow_fail data = ${local_part}@mail.example.com domains = "! dbm;/var/spool/exim/db/domains.db : \ *" retry_use_local_part defer_unknown: driver = redirect allow_defer allow_fail data = unknown@example.com retry_use_local_part # TRANPORTS CONFIGURATION begin transports local_delivery: driver = appendfile envelope_to_add file = /var/spool/mail/${local_part} group = mail mode = 0660 return_path_add #user=mail address_directory: driver = appendfile check_string = group = 8 maildir_format message_prefix = "" message_suffix = "" user = 8 address_pipe: driver = pipe group = 8 user = 8 address_file: driver = appendfile group = 8 #user=8 address_reply: driver = autoreply unknownuser_pipe: driver = pipe command = /usr/local/sbin/baduser.sh ignore_status return_output user = nobody # General configuration for SMTP delivery smtp: driver = smtp tls_certificate = /etc/ssl/certs/mail.pem tls_privatekey = /etc/ssl/certs/mail.pem tls_tempfail_tryclear = true hosts_avoid_tls = +hosts_avoid_tls headers_remove = "X-SA-Do-Not-Run:X-SA-Exim-Scanned:X-Spam-Status:X-Spam-Level" #tls_verify_ciphers = DES-CBC3-SHA:DES-CBC3-MD5 # RETRY CONFIGURATION begin retry # Domain Error Retries # ------ ----- ------- * * F,2h,15m; G,16h,2h,1.5; F,3d,8h