1 / 8

Homework 04

Homework 04. Mail System. Architecture. Mail Server. sub.domain.tld. domain.tld. Internet. SMTP. POP3/IMAP. Users. Requirement (1/4). Get you own domain http://nctucs.net Add a MX record for your mail server Build a mail system Anti-spam Anti-virus SMTP Server Postfix

matteo
Download Presentation

Homework 04

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Homework 04 Mail System

  2. Architecture Mail Server sub.domain.tld domain.tld Internet SMTP POP3/IMAP Users

  3. Requirement (1/4) • Get you own domain • http://nctucs.net • Add a MX record for your mail server • Build a mail system • Anti-spam • Anti-virus • SMTP Server • Postfix • SASL Authentication • SSL and TLS support • SMTPs

  4. Requirement (2/4) • POP3/IMAP Server • Dovecot • SSL and TLS support • POP3s/IMAPs • MTA filter • Amavisd-new • SpamAssassin • ClamAV • MDA filter • Procmail • Record all log to /var/log/procmail.log • Drop the mail whose subject contains keyword “ 安安你好”

  5. Requirement (3/4) • Greylisting • An anti-spam measure • Postgrey • Transport • The next-hop destination of nasa.cs.nctu.edu.tw would be nahw4.nctucs.net • Alias • demodemo@nasa.cs.nctu.edu.tw • Rewriting • Redirect user+XYZ@domain.tld to user@domain.tld • Address masquerading • From user@domain.tld instead of user@sub.domain.tld • All users except root

  6. Requirement (4/4) • Sender address verification • Disconnect suspicious SMTP clients • Deny from dynamic host • For example, 211-76-240-234.dynamic.ntcu.net • Real-time Blackhole List (RBL) • http://www.spamhaus.org/ • Whitelist • http://www.spamhauswhitelist.com • http://www.dnswl.org/ • DKIM signature and verification • SPF record and check • sid-milter • A SPF record for your server • http://www.mailradar.com/spf/

  7. Bonus – Web-based interface • Webmail • Horde • Roundcube • Squirrelmail

  8. Hand-in • Due • 6/12 • Demo • TBA

More Related