modified

production/haraka-wildduck/haraka/config/bounce.ini

@@ -3,7 +3,7 @@ reject_all=false
 single_recipient=true
 empty_return_path=true
 bad_rcpt=true
-bounce_spf=true
+bounce_spf=false
 non_local_msgid=true
 
 [reject]

production/haraka-wildduck/haraka/config/dkim_sign.ini

@@ -1,5 +1,5 @@
-disabled = false
-selector = dkim
-domain = hatthieves.es
-headers_to_sign = From, Sender, Reply-To, Subject, Date, Message-ID, To, Cc, MIME-Version
-dkim.private.key = /secure/dkim_private.key
+disabled=false
+selector=dkim
+domain=hatthieves.es
+headers_to_sign=From, Sender, Reply-To, Subject, Date, Message-ID, To, Cc, MIME-Version
+dkim.private.key=/../../secure/dkim_private.key

production/haraka-wildduck/haraka/config/helo.checks.ini

@@ -1,17 +1,17 @@
 ; disable checks or reject for each test if you are worried about strictness
 
-;dns_timeout=30
+dns_timeout=30
 
 [check]
 ; match_re=true
-bare_ip=true
+; bare_ip=false
 ; dynamic=true
 ; big_company=true
 ; literal_mismatch:  1 = exact IP match, 2 = IP/24 match, 3 = /24 or RFC1918
 ; literal_mismatch=2
 valid_hostname=true
-forward_dns=true
-rdns_match=true
+; forward_dns=true
+; rdns_match=true
 ; host_mismatch:  hostname differs between EHLO invocations
 host_mismatch=true
 ; proto_mismatch: host sent EHLO but then tries to sent HELO or vice-versa
@@ -22,15 +22,15 @@ host_mismatch=true
 ; proto_mismatch=false
 proto_mismatch=true
 ; rdns_match=false
-rdns_match=true
+rdns_match=false
 ; dynamic=false
 ; bare_ip=false
-bare_ip=true
+bare_ip=false
 ; literal_mismatch=false
 ; valid_hostname=false
 valid_hostname=true
 ; forward_dns=false
-forward_dns=true
+; forward_dns=true
 ; big_company=true
 
 [skip]

production/haraka-wildduck/haraka/config/mail_from.is_resolvable.ini

@@ -1,4 +1,4 @@
 timeout=30
 allow_mx_ip=0
 reject_no_mx=1
-re_bogus_ip=^(?:0\.0\.0\.0|255\.255\.255\.255|127\.)
+re_bogus_ip=^(?:0\.0\.0\.0|255\.255\.255\.255|127\.|172\.)

production/haraka-wildduck/haraka/config/mongodb.ini

@@ -10,7 +10,7 @@ user=
 ; password
 pass=
 ; host
-host=127.0.0.1
+host=172.200.0.103
 ; port
 port=27017
 ; database name
@@ -23,7 +23,7 @@ delivery=email_delivery_results
 
 ; Absolute path to store attachments
 [attachments]
-path=/home/node/Haraka/attachments
+path=/home/node/attachments
 
 [enable]
 queue=yes

production/haraka-wildduck/haraka/config/outbound.ini

@@ -8,10 +8,12 @@
 
 ; uncomment to disable tls for outbound mail
 ; enable_tls=false
+enable_tls=true
 
 ; maxTempFailures (default: 13)
 
 ; ipv6_enabled (default: false)
+ipv6_enabled=true
 
 ; load_pid_queue
 ; flush_queue
@@ -24,7 +26,9 @@
 
 ; pool_timeout: default : 300
 ; pool_timeout=0
+pool_timeout=30
 
 ; pool_concurrency_max: default: 10
 ; set to zero to disable pools
 ; pool_concurrency_max=0
+pool_concurrency_max=20

production/haraka-wildduck/haraka/config/plugins

@@ -24,6 +24,7 @@ access
 # block mails from known bad hosts (see config/dnsbl.zones for the DNS zones queried)
 #dnsbl
 redis
+#mongodb
 
 # HELO
 #early_talker
@@ -76,3 +77,4 @@ queue/lmtp
 
 #watch
 wildduck
+

production/haraka-wildduck/haraka/config/smtp.ini

@@ -1,6 +1,6 @@
 ; address to listen on (default: all IPv6 and IPv4 addresses, port 25)
 ; use "[::0]:25" to listen on IPv6 and IPv4 (not all OSes)
-; listen=[::0]:25
+listen=[::0]:25
 
 ; Note you can listen on multiple IPs/ports using commas:
 ;listen=127.0.0.1:2529,127.0.0.2:2529,127.0.0.3:2530
@@ -24,7 +24,7 @@ public_ip=82.223.3.135
 
 ; Run using cluster to fork multiple backend processes
 ;nodes=cpus
-nodes=4
+nodes=6
 
 ; Daemonize
 ;daemonize=true

production/haraka-wildduck/haraka/config/tls.ini

@@ -29,6 +29,6 @@ ciphers=ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-G
 
 ; no_tls_hosts - disable TLS for servers with broken TLS.
 [no_tls_hosts]
-; 127.0.0.1
+127.0.0.1
 ; 192.168.1.1
 ; 172.16.0.0/16

production/haraka-wildduck/haraka/config/wildduck.ini

@@ -49,7 +49,7 @@ sender:
 
 srs:
     # must be shared with ZoneMTA SRS config, otherwise messages sent from ZoneMTA are not recognized by Haraka
-    secret: 'asecretcat'
+    secret: 'a secret hat'
 
 attachments:
     type: 'gridstore'