Univention Bugzilla – Bug 38553
Enable quota-checking for Postfix with Dovecot
Last modified: 2015-07-09 18:14:28 CEST
Enable Dovecot 2.2 "quota-status" policy service and use in Postfix, so over-quota users don't produce backscatter.
Commit 60857 configures the quota-status service in Dovecot and sets it as a smtpd_recipient_restrictions for Postfix. Mail from external servers get after RCPT TO: 552 5.2.2 <ADDRESS>: Recipient address rejected: Mailbox is full BCC works: during one session one user can receive email, while anothers will be rejected. Does however not prevent backscatter for users with an account on the system, as permit_sasl_authenticated must be before it, but IMO that is OK: The bounce mail stays local, so it does not taint the servers/IPs reputation.
Commit 61299 added UCRVs to make quota-service listen address/port configurable, see bug #38716.
# swaks -s 10.200.18.22 -p 587 -tls -t mail1@nstx.local --body tmp/lorem.txt | grep full <~* 552 5.2.2 <mail1@nstx.local>: Recipient address rejected: Mailbox is full mail/dovecot/quota-status/ip and mail/dovecot/quota-status/port have been tested manually via netstat.
<http://errata.univention.de/ucs/4.0/237.html>