myhostname = mail.miodominio.it
mydomain = miodominio.it
myorigin = $mydomain
inet_interfaces = all
inet_protocols = ipv4
mydestination = 127.0.0.1
unknown_local_recipient_reject_code = 550
mynetworks_style = host
#----------parte relativa i file mappa cf -------------------#
relay_domains = proxy:mysql:$config_directory/sql/relay_domains.cf
relay_recipient_maps = proxy:mysql:$config_directory/sql/relay_recipient_maps.cf
virtual_alias_maps = proxy:mysql:$config_directory/sql/virtual_alias_maps.cf
virtual_mailbox_domains = proxy:mysql:$config_directory/sql/virtual_domains_maps.cf
virtual_mailbox_maps = proxy:mysql:$config_directory/sql/virtual_mailbox_maps.cf
transport_maps = proxy:mysql:$config_directory/sql/transport_maps.cf
#----------- fine mappe -----------------------#
virtual_mailbox_base = /var/spool/mail
virtual_uid_maps = static:8
virtual_gid_maps = static:12
mailbox_size_limit = 0
message_size_limit = 0
alias_maps = hash:/etc/aliases
alias_database = hash:/etc/aliases
smtpd_banner = $myhostname ESMTP $mail_name
debug_peer_level = 2
debugger_command =
         PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
         ddd $daemon_directory/$process_name $process_id & sleep 5
dovecot_destination_recipient_limit = 1
#------------------------- parte relativa a SASL -------------------------
broken_sasl_auth_clients        = yes
smtpd_helo_required             = yes
smtpd_client_restrictions       = permit_sasl_authenticated
smtpd_sender_restrictions       = permit_sasl_authenticated
smtpd_sasl_auth_enable          = yes
smtpd_sasl_security_options     = noanonymous
smtpd_sasl_tls_security_options = $smtpd_sasl_security_options
smtpd_sasl_type                 = dovecot
smtpd_sasl_path                 = private/auth
#-------------------------- fine SASL --------------------------
#-------------------------- parte relativa TLS -------------------------
smtpd_use_tls                   = yes
smtpd_tls_auth_only             = yes
smtpd_tls_cert_file             = /etc/pki/tls/certs/localhost.crt
smtpd_tls_key_file              = /etc/pki/tls/private/localhost.key
smtpd_tls_mandatory_protocols   = !SSLv2,!SSLv3
smtpd_tls_received_header       = yes
smtpd_tls_loglevel              = 3
tls_random_source               = dev:/dev/urandom
# --------------------------- fine TLS --------------------------
# ------------------ parte relativa le restrizioni SMTPD (relay) ------------------
disable_vrfy_command            = yes
non_fqdn_reject_code            = 450
invalid_hostname_reject_code    = 450
maps_rbl_reject_code            = 450
unverified_sender_reject_code   = 550
smtpd_recipient_restrictions =
        permit_mynetworks
        permit_sasl_authenticated
        reject_unauth_destination
        permit
compatibility_level = 2