11.3.2. Postfix
Originally developed at IBM by security expert and programmer Wietse Venema, Postfix is a Sendmail-compatible MTA that is designed to be secure, fast, and easy to configure.
To improve security, Postfix uses a modular design, where small processes with limited privileges are launched by a master daemon. The smaller, less privileged processes perform very specific tasks related to the various stages of mail delivery and run in a change rooted environment to limit the effects of attacks.
Configuring Postfix to accept network connections from hosts other than the local computer takes only a few minor changes in its configuration file. Yet for those with more complex needs, Postfix provides a variety of configuration options, as well as third party add ons that make it a very versatile and full-featured MTA.
The configuration files for Postfix are human readable and support upward of 250 directives. Unlike Sendmail, no macro processing is required for changes to take effect and the majority of the most commonly used options are described in the heavily commented files.
Important
Before using Postfix, the default MTA must be switched from Sendmail to Postfix. Refer to the chapter called Mail Transport Agent (MTA) Configuration in the System Administrators Guide for further details.
11.3.2.1. The Default Postfix Installation
The Postfix executable is
/usr/sbin/postfix
. This daemon launches all related processes needed to handle mail delivery.
Postfix stores its configuration files in the
/etc/postfix/
directory. The following is a list of the more commonly used files:
access
— Used for access control, this file specifies which hosts are allowed to connect to Postfix.aliases
— A configurable list required by the mail protocol.main.cf
— The global Postfix configuration file. The majority of configuration options are specified in this file.master.cf
— Specifies how Postfix interacts with various processes to accomplish mail delivery.transport
— Maps email addresses to relay hosts.
Important
The default
/etc/postfix/main.cf
file does not allow Postfix to accept network connections from a host other than the local computer. For instructions on configuring Postfix as a server for other clients, refer to Section 11.3.2.2, “Basic Postfix Configuration”.
When changing some options within files in the
/etc/postfix/
directory, it may be necessary to restart the postfix
service for the changes to take effect. The easiest way to do this is to type the following command:
service postfix restart