Fetchmail and local_recipients

I'm trying to setup a mail server to use Web-Cyradm. Ie.
Postfix/Cyrus/MySQL support for virtual domains. However, I have run
into an issue as a result of using fetchmail running on the same
machine as postfix.

On my Suse 9.3 box, there are many, many aliases defined that
correspond to the various facilities installed on the box. E.g. 'ftp',
'newsadm', 'squid' etc, etc.

What happens is that each of these aliases is taking precedence over
the virtual domains defined via Web-cyradm. E.g I send a mail to
squid@My.VirtualDomain.com and it ends up being sent to the root
account on the box. It seems that because fetchmail is posting from
the same box, postfix is testing the recipient against local users -
appearing in /etc/aliases - and concluding that 'squid' is local
(/etc/aliases routes 'squid' to 'root')

Is there strategy for configuring fetchmail and/or postfix such that
postfix treats the fetchmail traffic as though it was truly remote.

Maybe I have to reduce the aliases list. But what happens when the
facilities try to post stuff - it won't go to root?

--
Cheers, Des

One thing to check for, is to make sure that "mydestination" in main.cf
doesn't include any virtual domain names. Excerpt from "man 5 postconf":

mydestination
Do not specify the names of virtual domains - those domains are
specified elsewhere. See VIRTUAL_README for more information.

--
Greg


Des wrote:
> I'm trying to setup a mail server to use Web-Cyradm. Ie.
> Postfix/Cyrus/MySQL support for virtual domains. However, I have run
> into an issue as a result of using fetchmail running on the same
> machine as postfix.
>
> On my Suse 9.3 box, there are many, many aliases defined that
> correspond to the various facilities installed on the box. E.g. 'ftp',
> 'newsadm', 'squid' etc, etc.
>
> What happens is that each of these aliases is taking precedence over
> the virtual domains defined via Web-cyradm. E.g I send a mail to
> squid@My.VirtualDomain.com and it ends up being sent to the root
> account on the box. It seems that because fetchmail is posting from
> the same box, postfix is testing the recipient against local users -
> appearing in /etc/aliases - and concluding that 'squid' is local
> (/etc/aliases routes 'squid' to 'root')
>
> Is there strategy for configuring fetchmail and/or postfix such that
> postfix treats the fetchmail traffic as though it was truly remote.
>
> Maybe I have to reduce the aliases list. But what happens when the
> facilities try to post stuff - it won't go to root?
>

On Wed, 25 Jan 2006 21:50:34 GMT, Greg Hackney <hackney@swbell.net>
wrote:

>One thing to check for, is to make sure that "mydestination" in main.cf
>doesn't include any virtual domain names. Excerpt from "man 5 postconf":
>
> mydestination
> Do not specify the names of virtual domains - those domains are
> specified elsewhere. See VIRTUAL_README for more information.

Currently, I have,
mydestination =
$myhostname,localhost.$mydomain,mysql:/etc/postfix/mysql-mydestination.cf

That last part is the mechanism by which postfix recognises the
virtual domains configured for this box - the names are stored in a
MYSQL db. Without this, postfix will never terminate the mail on this
box.

There is a conflict with the need to recognise *some* local names,
such as 'root' and 'postmaster', but not let fetchmail allow spam to
'attack' the long list of aliases associated with the services.

Just wondering how other fetchmail/Web-cyradm users avoided this
problem.
--
Cheers, Des

I believe the info you want is on this web page:

http://www.postfix.org/VIRTUAL_README.html

I think you want what's described in the section called:
"Postfix virtual ALIAS example: separate domains, UNIX system accounts"

whereas now you're using the method listed under:
"As simple as can be: shared domains, UNIX system accounts"

--
Greg



Des wrote:
> On Wed, 25 Jan 2006 21:50:34 GMT, Greg Hackney <hackney@swbell.net>
> wrote:
>
>
>>One thing to check for, is to make sure that "mydestination" in main.cf
>>doesn't include any virtual domain names. Excerpt from "man 5 postconf":
>>
>> mydestination
>> Do not specify the names of virtual domains - those domains are
>> specified elsewhere. See VIRTUAL_README for more information.
>
>
> Currently, I have,
> mydestination =
> $myhostname,localhost.$mydomain,mysql:/etc/postfix/mysql-mydestination.cf
>
> That last part is the mechanism by which postfix recognises the
> virtual domains configured for this box - the names are stored in a
> MYSQL db. Without this, postfix will never terminate the mail on this
> box.
>
> There is a conflict with the need to recognise *some* local names,
> such as 'root' and 'postmaster', but not let fetchmail allow spam to
> 'attack' the long list of aliases associated with the services.
>
> Just wondering how other fetchmail/Web-cyradm users avoided this
> problem.