On Fri, 9 Jan 2004, Joakim Ryden wrote:
> Jason Williams wrote:
> [...]
> > Then in my master.cf
> >
> > # Cyrus 2.1.5
> > cyrus unix - n n - - pipe
> > user=cyrus argv=/usr/local/cyrus/bin/deliver -r ${sender} -m
> > ${extension} ${user}
> >
> > So it envokes the cyrus deliver program.
> > I see how that works.
> > Just trying to find out more on the two options: advantages and
> > disadvantages of both.
>
>
> If you have any kind of traffic I would *NOT* use this option as any
> Postfix calls to external programs will slow things down and eat far
> more resources than necessary.
I would concur with that sentiment. The ancient master.cf deliver
method would not be optimal under very heavy load.
> LMTP over tcp works well if you have a setup like... firewall -> Postfix
> server - Cyrus server, which is what I use. The Cyrus server as well as
> the Postfix are on internal IPs, Postfix server has port 25 open and
> Nat'ed from firewall, Cyrus server has IMAP and IMAP over SSL (ports 143
> & 993 NAT'ed from firewall so (hopefully) no one should even know that
> the LMTP tcp port is open on the Cyrus server. Even so I still use
> password authentication for Postfix to deliver to the Cyrus box.
We do something similar. Or, you could just have LMTP bound to local
interface.
--
Amos
