Imported Upstream version 1.20

doc/postfwd.html

@@ -64,6 +64,7 @@
             --proto <proto>         socket type (tcp or unix)
         -u, --user <name>           set uid to user <name>
         -g, --group <name>          set gid to group <name>
+            --umask <mask>          set umask for file permissions
         -R, --chroot <path>         chroot the daemon to <path>
             --pidfile <path>        create pidfile under <path>
         -l, --logname <label>       label for syslog messages
@@ -443,10 +444,11 @@ rule containing only an action statement:</p>
         this command creates a counter for the given &lt;item&gt;, which will be increased any time a request
         containing it arrives. if it exceeds &lt;max&gt; within &lt;time&gt; seconds it will return &lt;action&gt; to postfix.
         rate counters are very fast as they are executed before the ruleset is parsed.
+        please note that &lt;action&gt; is currently limited to postfix actions (no postfwd actions)!
             # no more than 3 requests per 5 minutes
             # from the same &quot;unknown&quot; client
             id=RATE01 ;  client_name==unknown ; \
-               action==rate($$client_address/3/300/450 4.7.1 sorry, max 3 requests per 5 minutes)</pre>
+               action==rate(client_address/3/300/450 4.7.1 sorry, max 3 requests per 5 minutes)</pre>
 <pre>
         size (&lt;item&gt;/&lt;max&gt;/&lt;time&gt;/&lt;action&gt;)
         this command works similar to the rate() command with the difference, that the rate counter is
@@ -454,7 +456,7 @@ rule containing only an action statement:</p>
         smtpd_end_of_data_restrictions. if you want to be sure, you could check it within the ruleset:
            # size limit 1.5mb per hour per client
            id=SIZE01 ;  state==END_OF_DATA ;  client_address==!!(10.1.1.1); \
-              action==size($$client_address/1572864/3600/450 4.7.1 sorry, max 1.5mb per hour)</pre>
+              action==size(client_address/1572864/3600/450 4.7.1 sorry, max 1.5mb per hour)</pre>
 <pre>
         rcpt (&lt;item&gt;/&lt;max&gt;/&lt;time&gt;/&lt;action&gt;)
         this command works similar to the rate() command with the difference, that the rate counter is
@@ -463,7 +465,7 @@ rule containing only an action statement:</p>
         check it within the ruleset:
            # recipient count limit 3 per hour per client
            id=RCPT01 ;  state==END_OF_DATA ;  client_address==!!(10.1.1.1); \
-              action==rcpt($$client_address/3/3600/450 4.7.1 sorry, max 3 recipients per hour)</pre>
+              action==rcpt(client_address/3/3600/450 4.7.1 sorry, max 3 recipients per hour)</pre>
 <pre>
         ask (&lt;addr&gt;:&lt;port&gt;[:&lt;ignore&gt;])
         allows to delegate the policy decision to another policy service (e.g. postgrey). the first
@@ -609,6 +611,11 @@ The following arguments will control it's behaviour in this case.</p>
 <pre>
         -g, --group &lt;name&gt;
         Changes real and effective group to &lt;name&gt;.</pre>
+<pre>
+        --umask &lt;mask&gt;
+        Changes the umask for filepermissions (unix domain sockets, pidfiles).
+        Attention: This is umask, not chmod - you have to specify the bits that
+        should NOT apply. E.g.: umask 077 equals to chmod 700.</pre>
 <pre>
         -R, --chroot &lt;path&gt;
         Chroot the process to the specified path.
@@ -805,9 +812,10 @@ the '-I' switch to have your configuration refreshed for every request postfwd r
         # 1. 30MB for systems in *.customer1.tld
         # 2. 20MB for SASL user joejob
         # 3. 10MB default
-        id=SZ001; state==END-OF-MESSAGE; action=REJECT message too large; size=30000000 ; client_name=\.customer1.tld$
-        id=SZ002; state==END-OF-MESSAGE; action=REJECT message too large; size=20000000 ; sasl_username==joejob
-        id=SZ003; state==END-OF-MESSAGE; action=REJECT message too large; size=10000000</pre>
+        id=SZ001; state==END-OF-MESSAGE; action=DUNNO; size&lt;=30000000 ; client_name=\.customer1.tld$
+        id=SZ002; state==END-OF-MESSAGE; action=DUNNO; size&lt;=20000000 ; sasl_username==joejob
+        id=SZ002; state==END-OF-MESSAGE; action=DUNNO; size&lt;=10000000
+        id=SZ100; state==END-OF-MESSAGE; action=REJECT message too large</pre>
 <pre>
         ## Selective Greylisting
         # 1. if listed on zen.spamhaus.org with results 127.0.0.10 or .11, dns cache timeout 1200s
@@ -856,9 +864,9 @@ the '-I' switch to have your configuration refreshed for every request postfwd r
         # 1. exceeded 30 requests per hour or
         # 2. tried to send more than 1.5mb within 10 minutes
         id=RATE01 ;  client_name==unknown ;  state==RCPT ; \
-                action==rate($$client_address/30/3600/450 4.7.1 sorry, max 30 requests per hour)
+                action==rate(client_address/30/3600/450 4.7.1 sorry, max 30 requests per hour)
         id=SIZE01 ;  client_name==unknown ;  state==END_OF_DATA ; \
-                action==size($$client_address/1572864/600/450 4.7.1 sorry, max 1.5mb per 10 minutes)</pre>
+                action==size(client_address/1572864/600/450 4.7.1 sorry, max 1.5mb per 10 minutes)</pre>
 <pre>
         ## Macros
         # definition