Guard against SMTP smuggling

This short-term workaround is recommended at https://www.postfix.org/smtp-smuggling.html: smtpd_data_restrictions=reject_unauth_pipelining
2023-12-22 08:53:48 -05:00 · 2023-12-22 08:53:48 -05:00 · faf23f150c
parent 8e4e9add78
commit faf23f150c
1 changed files with 5 additions and 0 deletions
--- a/setup/mail-postfix.sh
+++ b/setup/mail-postfix.sh
@ -69,6 +69,11 @@ tools/editconf.py /etc/postfix/main.cf \
 	maximal_queue_lifetime=2d \
 	bounce_queue_lifetime=1d

+# Guard against SMTP smuggling
+# This short-term workaround is recommended at https://www.postfix.org/smtp-smuggling.html
+tools/editconf.py /etc/postfix/main.cf \
+	smtpd_data_restrictions=reject_unauth_pipelining
+
 # ### Outgoing Mail

 # Enable the 'submission' ports 465 and 587 and tweak their settings.