Hey
In general, I think the approach of /etc/init.d/postfix is going to be
a pain to maintain:
* I suspect a large number of config options pointing at files are
missing today, like smtp_tls_CAfile, smtp_tls_CApath,
smtpd_tls_CAfile, smtpd_tls_CApath
* Postfix allows expressing things like check_recipient_access
restrictions which point at additional files which will be read
Perhaps a sensible approach would be for the init script to:
* support all config options which are set by default or via debconf as
it does not -- including etc/hosts, resolv.conf etc.
* also always copy the whole of etc/postfix over into the chroot
* provide a mean to copy additional files
Also, I wonder whether this stuff should be cleaned up; for instance I
moved my config from smtpd_use_tls to the new smtpd_tls_security_level,
and /etc/ssl/certs/ca-certificates.crt isn't getting updated anymore --
but an old version remains, which means that things work fine for now,
but will break some time in the future :-/
Maybe this should use some /var/spool/postfix/chroot directory which
would be cleared on each startup, or would be a tmpfs?
Cheers,
--
Loïc Minier
--
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]
