| 1 | |
| 2 | ### main/02_exim4-config_options |
| 3 | ################################# |
| 4 | |
| 5 | |
| 6 | # Defines the access control list that is run when an |
| 7 | # SMTP MAIL command is received. |
| 8 | # |
| 9 | .ifndef MAIN_ACL_CHECK_MAIL |
| 10 | MAIN_ACL_CHECK_MAIL = acl_check_mail |
| 11 | .endif |
| 12 | acl_smtp_mail = MAIN_ACL_CHECK_MAIL |
| 13 | |
| 14 | |
| 15 | # Defines the access control list that is run when an |
| 16 | # SMTP RCPT command is received. |
| 17 | # |
| 18 | .ifndef MAIN_ACL_CHECK_RCPT |
| 19 | MAIN_ACL_CHECK_RCPT = acl_check_rcpt |
| 20 | .endif |
| 21 | acl_smtp_rcpt = MAIN_ACL_CHECK_RCPT |
| 22 | |
| 23 | |
| 24 | # Defines the access control list that is run when an |
| 25 | # SMTP DATA command is received. |
| 26 | # |
| 27 | .ifndef MAIN_ACL_CHECK_DATA |
| 28 | MAIN_ACL_CHECK_DATA = acl_check_data |
| 29 | .endif |
| 30 | acl_smtp_data = MAIN_ACL_CHECK_DATA |
| 31 | |
| 32 | |
| 33 | # Message size limit. The default (used when MESSAGE_SIZE_LIMIT |
| 34 | # is unset) is 50 MB |
| 35 | .ifdef MESSAGE_SIZE_LIMIT |
| 36 | message_size_limit = MESSAGE_SIZE_LIMIT |
| 37 | .endif |
| 38 | |
| 39 | |
| 40 | # If you are running exim4-daemon-heavy or a custom version of Exim that |
| 41 | # was compiled with the content-scanning extension, you can cause incoming |
| 42 | # messages to be automatically scanned for viruses. You have to modify the |
| 43 | # configuration in two places to set this up. The first of them is here, |
| 44 | # where you define the interface to your scanner. This example is typical |
| 45 | # for ClamAV; see the manual for details of what to set for other virus |
| 46 | # scanners. The second modification is in the acl_check_data access |
| 47 | # control list. |
| 48 | |
| 49 | # av_scanner = clamd:/var/run/clamav/clamd.ctl |
| 50 | |
| 51 | |
| 52 | # For spam scanning, there is a similar option that defines the interface to |
| 53 | # SpamAssassin. You do not need to set this if you are using the default, which |
| 54 | # is shown in this commented example. As for virus scanning, you must also |
| 55 | # modify the acl_check_data access control list to enable spam scanning. |
| 56 | |
| 57 | # spamd_address = 127.0.0.1 783 |
| 58 | |
| 59 | # Domain used to qualify unqualified recipient addresses |
| 60 | # If this option is not set, the qualify_domain value is used. |
| 61 | # qualify_recipient = <value of qualify_domain> |
| 62 | |
| 63 | |
| 64 | # Allow Exim to recognize addresses of the form "user@[10.11.12.13]", |
| 65 | # where the domain part is a "domain literal" (an IP address) instead |
| 66 | # of a named domain. The RFCs require this facility, but it is disabled |
| 67 | # in the default config since it is rarely used and frequently abused. |
| 68 | # Domain literal support also needs a special router, which is automatically |
| 69 | # enabled if you use the enable macro MAIN_ALLOW_DOMAIN_LITERALS. |
| 70 | # Additionally, you might want to make your local IP addresses (or @[]) |
| 71 | # local domains. |
| 72 | .ifdef MAIN_ALLOW_DOMAIN_LITERALS |
| 73 | allow_domain_literals |
| 74 | .endif |
| 75 | |
| 76 | |
| 77 | # Do a reverse DNS lookup on all incoming IP calls, in order to get the |
| 78 | # true host name. If you feel this is too expensive, the networks for |
| 79 | # which a lookup is done can be listed here. |
| 80 | .ifndef DC_minimaldns |
| 81 | .ifndef MAIN_HOST_LOOKUP |
| 82 | MAIN_HOST_LOOKUP = * |
| 83 | .endif |
| 84 | host_lookup = MAIN_HOST_LOOKUP |
| 85 | .endif |
| 86 | |
| 87 | |
| 88 | # In a minimaldns setup, update-exim4.conf guesses the hostname and |
| 89 | # dumps it here to avoid DNS lookups being done at Exim run time. |
| 90 | .ifdef MAIN_HARDCODE_PRIMARY_HOSTNAME |
| 91 | primary_hostname = MAIN_HARDCODE_PRIMARY_HOSTNAME |
| 92 | .endif |
| 93 | |
| 94 | # The settings below cause Exim to make RFC 1413 (ident) callbacks |
| 95 | # for all incoming SMTP calls. You can limit the hosts to which these |
| 96 | # calls are made, and/or change the timeout that is used. If you set |
| 97 | # the timeout to zero, all RFC 1413 calls are disabled. RFC 1413 calls |
| 98 | # are cheap and can provide useful information for tracing problem |
| 99 | # messages, but some hosts and firewalls have problems with them. |
| 100 | # This can result in a timeout instead of an immediate refused |
| 101 | # connection, leading to delays on starting up SMTP sessions. |
| 102 | # (The default was reduced from 30s to 5s for release 4.61. and to |
| 103 | # disabled for release 4.86) |
| 104 | # |
| 105 | #rfc1413_hosts = * |
| 106 | #rfc1413_query_timeout = 5s |
| 107 | |
| 108 | |
| 109 | # Enable an efficiency feature. We advertise the feature; clients |
| 110 | # may request to use it. For multi-recipient mails we then can |
| 111 | # reject or accept per-user after the message is received. |
| 112 | # |
| 113 | prdr_enable = true |
| 114 | |
| 115 | # When using an external relay tester (such as rt.njabl.org and/or the |
| 116 | # currently defunct relay-test.mail-abuse.org, the test may be aborted |
| 117 | # since exim complains about "too many nonmail commands". If you want |
| 118 | # the test to complete, add the host from where "your" relay tester |
| 119 | # connects from to the MAIN_SMTP_ACCEPT_MAX_NOMAIL_HOSTS macro. |
| 120 | # Please note that a non-empty setting may cause extra DNS lookups to |
| 121 | # happen, which is the reason why this option is commented out in the |
| 122 | # default settings. |
| 123 | # MAIN_SMTP_ACCEPT_MAX_NOMAIL_HOSTS = !rt.njabl.org |
| 124 | .ifdef MAIN_SMTP_ACCEPT_MAX_NOMAIL_HOSTS |
| 125 | smtp_accept_max_nonmail_hosts = MAIN_SMTP_ACCEPT_MAX_NOMAIL_HOSTS |
| 126 | .endif |
| 127 | |
| 128 | # By default, exim forces a Sender: header containing the local |
| 129 | # account name at the local host name in all locally submitted messages |
| 130 | # that don't have the local account name at the local host name in the |
| 131 | # From: header, deletes any Sender: header present in the submitted |
| 132 | # message and forces the envelope sender of all locally submitted |
| 133 | # messages to the local account name at the local host name. |
| 134 | # The following settings allow local users to specify their own envelope sender |
| 135 | # in a locally submitted message. Sender: headers existing in a locally |
| 136 | # submitted message are not removed, and no automatic Sender: headers |
| 137 | # are added. These settings are fine for most hosts. |
| 138 | # If you run exim on a classical multi-user systems where all users |
| 139 | # have local mailboxes that can be reached via SMTP from the Internet |
| 140 | # with the local FQDN as the domain part of the address, you might want |
| 141 | # to disable the following three lines for traceability reasons. |
| 142 | .ifndef MAIN_FORCE_SENDER |
| 143 | local_from_check = false |
| 144 | local_sender_retain = true |
| 145 | untrusted_set_sender = * |
| 146 | .endif |
| 147 | |
| 148 | |
| 149 | # By default, Exim expects all envelope addresses to be fully qualified, that |
| 150 | # is, they must contain both a local part and a domain. Configure exim |
| 151 | # to accept unqualified addresses from certain hosts. When this is done, |
| 152 | # unqualified addresses are qualified using the settings of qualify_domain |
| 153 | # and/or qualify_recipient (see above). |
| 154 | # sender_unqualified_hosts = <unset> |
| 155 | # recipient_unqualified_hosts = <unset> |
| 156 | |
| 157 | |
| 158 | # Configure Exim to support the "percent hack" for certain domains. |
| 159 | # The "percent hack" is the feature by which mail addressed to x%y@z |
| 160 | # (where z is one of the domains listed) is locally rerouted to x@y |
| 161 | # and sent on. If z is not one of the "percent hack" domains, x%y is |
| 162 | # treated as an ordinary local part. The percent hack is rarely needed |
| 163 | # nowadays but frequently abused. You should not enable it unless you |
| 164 | # are sure that you really need it. |
| 165 | # percent_hack_domains = <unset> |
| 166 | |
| 167 | |
| 168 | # Bounce handling |
| 169 | .ifndef MAIN_IGNORE_BOUNCE_ERRORS_AFTER |
| 170 | MAIN_IGNORE_BOUNCE_ERRORS_AFTER = 2d |
| 171 | .endif |
| 172 | ignore_bounce_errors_after = MAIN_IGNORE_BOUNCE_ERRORS_AFTER |
| 173 | |
| 174 | .ifndef MAIN_TIMEOUT_FROZEN_AFTER |
| 175 | MAIN_TIMEOUT_FROZEN_AFTER = 7d |
| 176 | .endif |
| 177 | timeout_frozen_after = MAIN_TIMEOUT_FROZEN_AFTER |
| 178 | |
| 179 | .ifndef MAIN_FREEZE_TELL |
| 180 | MAIN_FREEZE_TELL = postmaster |
| 181 | .endif |
| 182 | freeze_tell = MAIN_FREEZE_TELL |
| 183 | |
| 184 | |
| 185 | # Define spool directory |
| 186 | .ifndef SPOOLDIR |
| 187 | SPOOLDIR = /var/spool/exim4 |
| 188 | .endif |
| 189 | spool_directory = SPOOLDIR |
| 190 | |
| 191 | |
| 192 | # trusted users can set envelope-from to arbitrary values |
| 193 | .ifndef MAIN_TRUSTED_USERS |
| 194 | MAIN_TRUSTED_USERS = uucp |
| 195 | .endif |
| 196 | trusted_users = MAIN_TRUSTED_USERS |
| 197 | .ifdef MAIN_TRUSTED_GROUPS |
| 198 | trusted_groups = MAIN_TRUSTED_GROUPS |
| 199 | .endif |
| 200 | |
| 201 | |
| 202 | # users in admin group can do many other things |
| 203 | # admin_groups = <unset> |
| 204 | |
| 205 | |
| 206 | # SMTP Banner. The example includes the Debian version in the SMTP dialog |
| 207 | # MAIN_SMTP_BANNER = "${primary_hostname} ESMTP Exim ${version_number} (Debian package MAIN_PACKAGE_VERSION) ${tod_full}" |
| 208 | # smtp_banner = $smtp_active_hostname ESMTP Exim $version_number $tod_full |
| 209 | |
| 210 | .ifdef MAIN_KEEP_ENVIRONMENT |
| 211 | keep_environment = MAIN_KEEP_ENVIRONMENT |
| 212 | .else |
| 213 | # set option to empty value to avoid warning. |
| 214 | keep_environment = |
| 215 | .endif |
| 216 | .ifdef MAIN_ADD_ENVIRONMENT |
| 217 | add_environment = MAIN_ADD_ENVIRONMENT |
| 218 | .endif |