1 files changed, 8 insertions, 8 deletions
diff --git a/hosts/surtr/email/default.nix b/hosts/surtr/email/default.nix
index 59639bec..8eb19b6b 100644
--- a/hosts/surtr/email/default.nix
+++ b/hosts/surtr/email/default.nix
@@ -146,7 +146,7 @@ in {
      setSendmail = true;
      postmasterAlias = ""; rootAlias = ""; extraAliases = "";
      settings.main = {
-        recpipient_delimiter = "";
+        recipient_delimiter = "";
        mydestination = [];
        mynetworks = [];
        myhostname = "surtr.yggdrasil.li";
@@ -157,8 +157,6 @@ in {
          "/run/credentials/postfix.service/surtr.yggdrasil.li.full.pem"
        ];
-        #enable ECDH
-        smtpd_tls_eecdh_grade = "strong";
        #enabled SSL protocols, don't allow SSLv2 and SSLv3
        smtpd_tls_protocols = ["!SSLv2" "!SSLv3" "!TLSv1" "!TLSv1.1"];
        smtpd_tls_mandatory_protocols = ["!SSLv2" "!SSLv3" "!TLSv1" "!TLSv1.1"];
@@ -239,7 +237,6 @@ in {
        propagate_unmatched_extensions = ["canonical" "virtual" "alias"];
        smtpd_authorized_verp_clients = "";
-        authorized_verp_clients = "";
        smtpd_client_event_limit_exceptions = "";
@@ -256,7 +253,8 @@ in {
        bounce_queue_lifetime = "20m";
        delay_warning_time = "10m";
-        failure_template_file = toString (pkgs.writeText "failure.cf" ''
+        bounce_template_file = pkgs.writeText "bounce.cf" ''
+          failure_template = <<EOF
          Charset: us-ascii
          From: Mail Delivery System <MAILER-DAEMON>
          Subject: Undelivered Mail Returned to Sender
@@ -268,8 +266,9 @@ in {
          be delivered to one or more recipients. It's attached below.
                             The mail system
-        '');
+          EOF
-        delay_template_file = toString (pkgs.writeText "delay.cf" ''
+          delay_template = <<EOF
          Charset: us-ascii
          From: Mail Delivery System <MAILER-DAEMON>
          Subject: Delayed Mail (still being retried)
@@ -285,7 +284,8 @@ in {
          It will be retried until it is $maximal_queue_lifetime_minutes minute(s) old.
                             The mail system
-        '');
+          EOF
+        '';
        smtpd_discard_ehlo_keyword_address_maps = "cidr:${pkgs.writeText "esmtp_access" ''
          # Allow DSN requests from local subnet only

diff --git a/hosts/surtr/email/default.nix b/hosts/surtr/email/default.nix index 59639bec..8eb19b6b 100644 --- a/hosts/surtr/email/default.nix +++ b/hosts/surtr/email/default.nix
@@ -146,7 +146,7 @@ in {
146	setSendmail = true;	146	setSendmail = true;
147	postmasterAlias = ""; rootAlias = ""; extraAliases = "";	147	postmasterAlias = ""; rootAlias = ""; extraAliases = "";
148	settings.main = {	148	settings.main = {
149	recpipient_delimiter = "";	149	recipient_delimiter = "";
150	mydestination = [];	150	mydestination = [];
151	mynetworks = [];	151	mynetworks = [];
152	myhostname = "surtr.yggdrasil.li";	152	myhostname = "surtr.yggdrasil.li";
@@ -157,8 +157,6 @@ in {
157	"/run/credentials/postfix.service/surtr.yggdrasil.li.full.pem"	157	"/run/credentials/postfix.service/surtr.yggdrasil.li.full.pem"
158	];	158	];
159		159
160	#enable ECDH
161	smtpd_tls_eecdh_grade = "strong";
162	#enabled SSL protocols, don't allow SSLv2 and SSLv3	160	#enabled SSL protocols, don't allow SSLv2 and SSLv3
163	smtpd_tls_protocols = ["!SSLv2" "!SSLv3" "!TLSv1" "!TLSv1.1"];	161	smtpd_tls_protocols = ["!SSLv2" "!SSLv3" "!TLSv1" "!TLSv1.1"];
164	smtpd_tls_mandatory_protocols = ["!SSLv2" "!SSLv3" "!TLSv1" "!TLSv1.1"];	162	smtpd_tls_mandatory_protocols = ["!SSLv2" "!SSLv3" "!TLSv1" "!TLSv1.1"];
@@ -239,7 +237,6 @@ in {
239		237
240	propagate_unmatched_extensions = ["canonical" "virtual" "alias"];	238	propagate_unmatched_extensions = ["canonical" "virtual" "alias"];
241	smtpd_authorized_verp_clients = "";	239	smtpd_authorized_verp_clients = "";
242	authorized_verp_clients = "";
243		240
244	smtpd_client_event_limit_exceptions = "";	241	smtpd_client_event_limit_exceptions = "";
245		242
@@ -256,7 +253,8 @@ in {
256	bounce_queue_lifetime = "20m";	253	bounce_queue_lifetime = "20m";
257	delay_warning_time = "10m";	254	delay_warning_time = "10m";
258		255
259	failure_template_file = toString (pkgs.writeText "failure.cf" ''	256	bounce_template_file = pkgs.writeText "bounce.cf" ''
		257	failure_template = <<EOF
260	Charset: us-ascii	258	Charset: us-ascii
261	From: Mail Delivery System <MAILER-DAEMON>	259	From: Mail Delivery System <MAILER-DAEMON>
262	Subject: Undelivered Mail Returned to Sender	260	Subject: Undelivered Mail Returned to Sender
@@ -268,8 +266,9 @@ in {
268	be delivered to one or more recipients. It's attached below.	266	be delivered to one or more recipients. It's attached below.
269		267
270	The mail system	268	The mail system
271	'');	269	EOF
272	delay_template_file = toString (pkgs.writeText "delay.cf" ''	270
		271	delay_template = <<EOF
273	Charset: us-ascii	272	Charset: us-ascii
274	From: Mail Delivery System <MAILER-DAEMON>	273	From: Mail Delivery System <MAILER-DAEMON>
275	Subject: Delayed Mail (still being retried)	274	Subject: Delayed Mail (still being retried)
@@ -285,7 +284,8 @@ in {
285	It will be retried until it is $maximal_queue_lifetime_minutes minute(s) old.	284	It will be retried until it is $maximal_queue_lifetime_minutes minute(s) old.
286		285
287	The mail system	286	The mail system
288	'');	287	EOF
		288	'';
289		289
290	smtpd_discard_ehlo_keyword_address_maps = "cidr:${pkgs.writeText "esmtp_access" ''	290	smtpd_discard_ehlo_keyword_address_maps = "cidr:${pkgs.writeText "esmtp_access" ''
291	# Allow DSN requests from local subnet only	291	# Allow DSN requests from local subnet only