Linux Email: Set up and Run a Small Office Email Server
A simple step-by-step guide to setting up a Linux email server using the most popular free Open Source tools 
 

Packt Publishing


 

HOME > CHAPTER 5
Chapter 5: Securing Your Installation
Of all the bad things that can happen to your SMTP server, the worst is probably having it abused as an open relay—a server that relays mail for third parties without your permission. This will consume a lot of bandwidth, eat up server resources, and cost you a lot of money. Worse than that, your server will end up on a blacklist, and any server consulting this list will refuse to accept mail from your server until you have proven it to be relay-safe. If you need your mail server for business, you will have a big problem.

This chapter will tell you how to protect Postfix from relay abuse. You will learn the difference between statically and dynamically assigned IP addresses when it comes to relay protection. Then you will be shown how to configure relay permissions for both types of IP addresses.
Postfix provides means to protect users from unwanted content such as spam and other harmful content. Finally, as an introduction to its vast functionality, you will learn how to configure Postfix to defeat or at least slow down Dictionary Attacks. The chapter will end with a demonstration of how Postfix can give a hard time to those who are trying to give Postfix a hard time.

  • Chapter 5: Securing Your Installation
     
    • Setting Up a Permanent Authorized Relay for an IP Address or Range of IP Addresses
      • SMTP- After- POP
      • Virtual Private Networks
      • SMTP Authentication
      • Static IP Ranges
        • Generic Relay Rules
        • Explicit Relay Rules
      • Dynamic IP Ranges
    • Cyrus SASL
      • SASL Layers
        • Authentication Interface
        • Mechanism
        • Method
        • Password Verification Service
      • Cyrus SASL Installation
      • Cryus SASL Configuration
        • Selecting a Password Verification Service
        • Choosing a Log Level
        • Choosing Valid Mechanisms
    • Testing Cyrus SASL Authentication
    • Postfix SMTP AUTH Configuration
      • Preparing the Configuration
      • Enabling SMTP AUTH
      • Setting the Security Policy
      • Including Broken Clients
    • Testing SMTP AUTH
    • Enabling Relaying for Authenticated Clients
    • Securing Plaintext Mechanisms
      • Enabling Transport Layer Security
      • Configuring Security Policy
    • Dictionary Attacks
      • Recipient Maps
        • Checking Local Domain Recipients
        • Checking Relay Domain Recipients
      • Rate Limiting Connections
    • Summary

 
BOOK DETAILS
  Paperback, 295 pages
Released: July 2005
ISBN: 190481137X
Authors: Alistair McDonald,
Carl Taylor, Magnus Bäck, David Rusenko, Ralf Hildebrandt, Patrick Ben Koetter   		 
 

TABLE OF CONTENTS

Introduction
1: Linux and E-Mail Basics 
2: Setting Up Postfix
3: Incoming Mail with POP and IMAP
4: Providing Webmail Access   Free Chapter
5: Securing Your Installation  
6: Getting Started with Procmail
7: Advanced Procmail
8: Busting Spam with SpamAssassin
9: Antivirus Protection
10: Backing Up Your System
Index
 




View the book details
on PacktPub.com

 

 

  This website is owned and maintained by Packt Publishing Ltd, 2005. All rights reserved. Terms and Conditions