Postfix Forwarder package v2

postfix + postscreen + rbl + spf + ldap search

Author:    marcelloc <marcellocoutinho@gmail.com>

1 files changed, 268 insertions, 0 deletions

diff --git a/config/postfix/postfix_antispam.xml b/config/postfix/postfix_antispam.xml
new file mode 100644
index 00000000..ef794776
--- /dev/null
+++ b/config/postfix/postfix_antispam.xml
@@ -0,0 +1,268 @@
+<?xml version="1.0" encoding="utf-8" ?>
+<!DOCTYPE packagegui SYSTEM "./schema/packages.dtd">
+<?xml-stylesheet type="text/xsl" href="./xsl/package.xsl"?>
+<packagegui>
+	<copyright>
+	<![CDATA[
+/* $Id$ */
+/* ========================================================================== */
+/*
+    postfix.xml
+    part of the Postfix package for pfSense
+    Copyright (C) 2011 Marcello Coutinho
+
+    All rights reserved.            
+			                                                                  */
+/* ========================================================================== */
+/*
+    Redistribution and use in source and binary forms, with or without
+    modification, are permitted provided that the following conditions are met:
+
+     1. Redistributions of source code must retain the above copyright notice,
+        this list of conditions and the following disclaimer.
+
+     2. Redistributions in binary form must reproduce the above copyright
+        notice, this list of conditions and the following disclaimer in the
+        documentation and/or other materials provided with the distribution.
+
+    THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES,
+    INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY
+    AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
+    AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,
+    OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
+    SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
+    INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
+    CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
+    ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
+    POSSIBILITY OF SUCH DAMAGE.
+                                                                              */
+/* ========================================================================== */
+	]]>
+	</copyright>
+	<description>Describe your package here</description>
+	<requirements>Describe your package requirements here</requirements>
+	<faq>Currently there are no FAQ items provided.</faq>
+	<name>postfix_antispam</name>
+	<version>1.0</version>
+	<title>Services: Postfix relay and antispam</title>
+	<include_file>/usr/local/pkg/postfix.inc</include_file>
+	<menu>
+		<name>Postfix Antispam and mail Relay</name>
+		<tooltiptext>Configure Postfix Forwarder</tooltiptext>
+		<section>Services</section>
+		<url>pkg_edit.php?xml=postfix_antispam.xml&amp;id=0</url>
+	</menu>
+	<service>
+		<name>postfix</name>
+		<rcfile>postfix.sh</rcfile>
+		<executable>master</executable>
+	</service>
+	<additional_files_needed>
+		<item>http://www.pfsense.org/packages/config/postfix/postfix.inc</item>
+		<prefix>/usr/local/pkg/</prefix>
+		<chmod>0755</chmod>
+	</additional_files_needed>
+	<additional_files_needed>
+		<item>http://www.pfsense.org/packages/config/postfix/postfix_acl.xml</item>
+		<prefix>/usr/local/pkg/</prefix>
+		<chmod>0755</chmod>
+	</additional_files_needed>
+	<additional_files_needed>
+		<item>http://www.pfsense.org/packages/config/postfix/postfix_recipients.xml</item>
+		<prefix>/usr/local/pkg/</prefix>
+		<chmod>0755</chmod>
+	</additional_files_needed>
+	<additional_files_needed>
+		<item>http://www.pfsense.org/packages/config/postfix/postfix_antispam.xml</item>
+		<prefix>/usr/local/pkg/</prefix>
+		<chmod>0755</chmod>
+	</additional_files_needed>
+
+		<additional_files_needed>
+		<item>http://www.pfsense.org/packages/config/postfix/postfix_sync.xml</item>
+		<prefix>/usr/local/pkg/</prefix>
+		<chmod>0755</chmod>
+	</additional_files_needed>
+		<additional_files_needed>
+		<item>http://www.pfsense.org/packages/config/postfix/postfix_view_config.php</item>
+		<prefix>/usr/local/www/</prefix>
+		<chmod>0755</chmod>
+	</additional_files_needed>
+	<additional_files_needed>
+		<item>http://www.pfsense.org/packages/config/postfix/postfix_recipients.php</item>
+		<prefix>/usr/local/www/</prefix>
+		<chmod>0755</chmod>
+	</additional_files_needed>
+<tabs>
+		<tab>
+			<text>General</text>
+			<url>/pkg_edit.php?xml=postfix.xml&amp;id=0</url>
+		</tab>
+		<tab>
+			<text>ACLs / Filter Maps</text>
+			<url>/pkg_edit.php?xml=postfix_acl.xml&amp;id=0</url>
+		</tab>
+		<tab>
+			<text>Valid recipients</text>
+			<url>/pkg_edit.php?xml=postfix_recipients.xml&amp;id=0</url>
+		</tab>
+		<tab>
+			<text>Antispam</text>
+			<url>/pkg_edit.php?xml=postfix_antispam.xml&amp;id=0</url>
+			<active/>
+		</tab>
+		<tab>
+			<text>XMLRPC Sync</text>
+			<url>/pkg_edit.php?xml=postfix_sync.xml&amp;id=0</url>
+		</tab>
+		<tab>
+			<text>View config files</text>
+			<url>/postfix_view_config.php</url>
+		</tab>
+</tabs>
+	<fields>
+		<field>
+			<name>Postfix Antispam Settings</name>
+			<type>listtopic</type>
+		</field>
+		<field>
+			<fielddescr>Header verification  </fielddescr>
+			<fieldname>header_check</fieldname>
+			<type>select</type>
+			<options>
+				<option><name>Strong</name><value>strong</value></option>
+				<option><name>Basic</name><value>basic</value></option>
+			</options>
+			<description>Enable sender, client, recipients and rfc verification</description>
+		</field>
+		<field>
+			<fielddescr>Zombie blocker</fielddescr>
+			<fieldname>zombie_blocker</fieldname>
+			<description>
+			<![CDATA[<a target=_new href='http://www.postfix.org/POSTSCREEN_README.html'>Use postfix 2.8 Postscreen feature to detect zombie spammers</a>]]>
+			</description>
+	    	<type>select</type>
+ 				<options>
+				<option><name>Enabled with enforce</name><value>enforce</value></option>
+				<option><name>Enabled with drop</name><value>drop</value></option>
+				<option><name>Enabled with ignore</name><value>ignore</value></option>
+				<option><name>Disabled</name><value>disabled</value></option>
+				</options>
+		</field>
+		<field>
+			<fielddescr>greet wait time</fielddescr>
+			<fieldname>greet_time</fieldname>
+			<type>input</type>
+			<size>10</size>
+			<description><![CDATA[<strong>syntax: 2,6s&nbsp;&nbsp;&nbsp;</strong>(default: up to 2 seconds under stress, up to 6 seconds otherwise)<br>
+								The amount of time that postscreen will wait for an SMTP client to send a command before its turn, and for DNS blocklist lookup results to arrive .<br>
+								Specify a non-zero time value (an integral value plus an optional one-letter suffix that specifies the time unit).<br>
+								Time units: s (seconds), m (minutes), h (hours), d (days), w (weeks).]]>
+			</description>
+		</field>
+		<field>
+			<fielddescr>After greeting tests</fielddescr>
+			<fieldname>after_greeting</fieldname>
+			<description>
+			<![CDATA[<a target=_new href='http://www.postfix.org/POSTSCREEN_README.html'>Postscreen After greeting tests. All these options are recomended.</a>]]>
+			</description>
+	    	<type>select</type>
+ 				<options>
+				<option><name>postscreen_bare_newline_enable</name><value>postscreen_bare_newline_enable</value></option>
+				<option><name>postscreen_disable_vrfy_command</name><value>postscreen_disable_vrfy_command</value></option>
+				<option><name>postscreen_non_smtp_command_enable</name><value>postscreen_non_smtp_command_enable</value></option>
+				<option><name>postscreen_pipelining_enable</name><value>postscreen_pipelining_enable</value></option>
+				<option><name>postscreen_greet_check</name><value>postscreen_greet_check</value></option>
+				</options>
+				<rows>10</rows>
+				<multiple/>
+		</field>
+		<field>
+			<fielddescr>Soft Bounce</fielddescr>
+			<fieldname>soft_bounce</fieldname>
+			<type>select</type>
+ 				<options>
+				<option><name>Enabled only in postscreen</name><value>postscreen</value></option>
+				<option><name>Enabled</name><value>enabled</value></option>
+				<option><name>Disabled</name><value>disabled</value></option>
+				</options>
+			<description><![CDATA[Safety net to keep mail queued that would otherwise be returned to the sender.<br>
+								This parameter disables locally-generated bounces, and prevents the Postfix SMTP server from rejecting mail permanently, by changing 5xx reply codes into 4xx.<br>
+								However, soft_bounce is no cure for address rewriting mistakes or mail routing mistakes.]]>
+			</description>
+		</field>
+		<field>
+			<fielddescr>RBL server List</fielddescr>
+			<fieldname>rbl_servers</fieldname>
+			<description><![CDATA[
+			ex: dnsbl.sorbs.net, bl.spamcop.net*2, dnslb.local*-5, cbl.abuseat.org, b.barracudacentral.org, dnsbl.invaluement.com<BR>
+			Check some rbl servers at http://www.anti-abuse.org/multi-rbl-check/<br><br>
+			You can also create a local rbl dns server to whitelist some hosts/domains<br>
+			See how it works in http://www.postfix.org/postconf.5.html#postscreen_dnsbl_sites]]>
+			</description>
+			<type>textarea</type>
+			<cols>70</cols>
+			<rows>03</rows>
+		</field>
+		<field>
+			<fielddescr>RBL threshold</fielddescr>
+			<fieldname>rbl_threshold</fieldname>
+			<description>How many RBL Lists Postscreen must find clien's ip address to block sender.</description>
+	    	<type>select</type>
+ 				<options>
+				<option><name>1</name><value>1</value></option>
+				<option><name>2</name><value>2</value></option>
+				<option><name>3</name><value>3</value></option>
+				<option><name>4</name><value>4</value></option>
+				<option><name>5</name><value>5</value></option>
+				</options>
+		</field>
+		<field>
+			<fielddescr>SPF lookup</fielddescr>
+			<fieldname>postfix_spf</fieldname>
+			<type>checkbox</type>
+			<description>
+			<![CDATA[<a target=_new href='http://www.openspf.org/Introduction'>The Sender Policy Framework (SPF) is an open standard specifying a technical method to prevent sender address forgery.</a>]]>
+			</description>
+		</field>
+		<field>
+			<name><![CDATA[Third part Antispam Settings ]]></name>
+			<type>listtopic</type>
+		</field>
+		<field>
+			<fielddescr>Use Third part antispam</fielddescr>
+			<fieldname>antispam_enabled</fieldname>
+			<type>checkbox</type>
+			<description></description>
+		</field>
+		<field>
+			<fielddescr>Software</fielddescr>
+			<fieldname>antispam_software</fieldname>
+			<description>Select Third part solution to use. See postfix forwarder package info page for instaling instructions</description>
+	    	<type>select</type>
+ 				<options>
+				<option><name>Mailscanner + Spamassassin + clamav</name><value>mailscanner</value></option>
+				<option><name>Policyd v2 + amavis</name><value>policyd2</value></option>
+				</options>
+		</field>
+		<field>
+			<fielddescr>Policydv2 Location</fielddescr>
+			<fieldname>antispam_location</fieldname>
+			<description>inet:ipaddress:port of antispam server if it is not installed local.</description>
+			<type>input</type>
+			<size>50</size>
+		</field>
+	</fields>
+	<custom_php_install_command>
+		postfix_php_install_command();
+	</custom_php_install_command>
+	<custom_php_deinstall_command>
+		postfix_php_deinstall_command();
+	</custom_php_deinstall_command>
+	<custom_php_validation_command>
+		postfix_validate_input($_POST, &amp;$input_errors);
+	</custom_php_validation_command>	
+	<custom_php_resync_config_command>
+		sync_package_postfix();
+	</custom_php_resync_config_command>
+</packagegui>