diff --git a/journals/2023_02_20.md b/journals/2023_02_20.md
index 558c90fc..db3c9a4d 100644
--- a/journals/2023_02_20.md
+++ b/journals/2023_02_20.md
@@ -83,4 +83,72 @@
 			  ```
 			- Test postgres
 				- ``docker compose up -d``
-				- ``docker compose run sl-db psql -U simplelogin simplelogin``
\ No newline at end of file
+				- ``docker compose run sl-db psql -U simplelogin simplelogin``
+			- ``sudo apt-get install -y postfix postfix-pgsql -y``
+			- ``` 
+			  # POSTFIX config file, adapted for SimpleLogin
+			  smtpd_banner = $myhostname ESMTP $mail_name (Ubuntu)
+			  biff = no
+			  
+			  # appending .domain is the MUA's job.
+			  append_dot_mydomain = no
+			  
+			  # Uncomment the next line to generate "delayed mail" warnings
+			  #delay_warning_time = 4h
+			  
+			  readme_directory = no
+			  
+			  # See http://www.postfix.org/COMPATIBILITY_README.html -- default to 2 on
+			  # fresh installs.
+			  compatibility_level = 2
+			  
+			  # TLS parameters
+			  smtpd_tls_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem
+			  smtpd_tls_key_file=/etc/ssl/private/ssl-cert-snakeoil.key
+			  smtpd_tls_session_cache_database = btree:${data_directory}/smtpd_scache
+			  smtp_tls_session_cache_database = btree:${data_directory}/smtp_scache
+			  smtp_tls_security_level = may
+			  smtpd_tls_security_level = may
+			  
+			  # See /usr/share/doc/postfix/TLS_README.gz in the postfix-doc package for
+			  # information on enabling SSL in the smtp client.
+			  
+			  alias_maps = hash:/etc/aliases
+			  mynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128 10.0.0.0/24
+			  
+			  # Set your domain here
+			  mydestination =
+			  myhostname = app.mydomain.com
+			  mydomain = mydomain.com
+			  myorigin = mydomain.com
+			  
+			  relay_domains = pgsql:/etc/postfix/pgsql-relay-domains.cf
+			  transport_maps = pgsql:/etc/postfix/pgsql-transport-maps.cf
+			  
+			  # HELO restrictions
+			  smtpd_delay_reject = yes
+			  smtpd_helo_required = yes
+			  smtpd_helo_restrictions =
+			      permit_mynetworks,
+			      reject_non_fqdn_helo_hostname,
+			      reject_invalid_helo_hostname,
+			      permit
+			  
+			  # Sender restrictions:
+			  smtpd_sender_restrictions =
+			      permit_mynetworks,
+			      reject_non_fqdn_sender,
+			      reject_unknown_sender_domain,
+			      permit
+			  
+			  # Recipient restrictions:
+			  smtpd_recipient_restrictions =
+			     reject_unauth_pipelining,
+			     reject_non_fqdn_recipient,
+			     reject_unknown_recipient_domain,
+			     permit_mynetworks,
+			     reject_unauth_destination,
+			     reject_rbl_client zen.spamhaus.org,
+			     reject_rbl_client bl.spamcop.net,
+			     permit
+			  ```
\ No newline at end of file