summaryrefslogtreecommitdiff
path: root/hosts/sif/mail/default.nix
diff options
context:
space:
mode:
Diffstat (limited to 'hosts/sif/mail/default.nix')
-rw-r--r--hosts/sif/mail/default.nix10
1 files changed, 5 insertions, 5 deletions
diff --git a/hosts/sif/mail/default.nix b/hosts/sif/mail/default.nix
index 2addba9d..29bfb4f1 100644
--- a/hosts/sif/mail/default.nix
+++ b/hosts/sif/mail/default.nix
@@ -38,23 +38,23 @@
38 /@ifi\.(lmu|uni-muenchen)\.de$/ smtp:smtpin1.ifi.lmu.de:587 38 /@ifi\.(lmu|uni-muenchen)\.de$/ smtp:smtpin1.ifi.lmu.de:587
39 /@(campus\.)?lmu\.de$/ smtp:postout.lrz.de 39 /@(campus\.)?lmu\.de$/ smtp:postout.lrz.de
40 ''}''; 40 ''}'';
41 sender_bcc_maps = ''texthash:${pkgs.writeText "sender_bcc" '' 41 sender_bcc_maps = ''regexp:${pkgs.writeText "sender_bcc" ''
42 uni2work@ifi.lmu.de uni2work@ifi.lmu.de 42 /^uni2work(-[^@]*)?@ifi\.lmu\.de$/ uni2work@ifi.lmu.de
43 @ifi.lmu.de gregor.kleen@ifi.lmu.de 43 /@ifi\.lmu\.de$/ gregor.kleen@ifi.lmu.de
44 ''}''; 44 ''}'';
45 45
46 smtp_sasl_auth_enable = true; 46 smtp_sasl_auth_enable = true;
47 smtp_sender_dependent_authentication = true; 47 smtp_sender_dependent_authentication = true;
48 smtp_sasl_tls_security_options = "noanonymous"; 48 smtp_sasl_tls_security_options = "noanonymous";
49 smtp_sasl_mechanism_filter = ["plain"]; 49 smtp_sasl_mechanism_filter = ["plain"];
50 smtp_sasl_password_maps = "texthash:/var/db/postfix/sasl_passwd"; 50 smtp_sasl_password_maps = "regexp:/var/db/postfix/sasl_passwd";
51 smtp_cname_overrides_servername = false; 51 smtp_cname_overrides_servername = false;
52 smtp_always_send_ehlo = true; 52 smtp_always_send_ehlo = true;
53 smtp_tls_security_level = "dane";
53 54
54 smtp_tls_loglevel = "1"; 55 smtp_tls_loglevel = "1";
55 smtp_dns_support_level = "dnssec"; 56 smtp_dns_support_level = "dnssec";
56 }; 57 };
57 useDane = true;
58 }; 58 };
59 59
60 sops.secrets.postfix-sasl-passwd = { 60 sops.secrets.postfix-sasl-passwd = {
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-11 08:40:06 +0000