sendmail Cookbook. Administering, Securing & Spam-Fighting - Helion
ISBN: 978-05-965-5214-5
stron: 408, Format: ebook
Data wydania: 2003-12-15
Księgarnia: Helion
Cena książki: 160,65 zł (poprzednio: 186,80 zł)
Oszczędzasz: 14% (-26,15 zł)
More often than not, the words "sendmail configuration" strike dread in the hearts of sendmail and system administrators--and not without reason. sendmail configuration languages are as complex as any other programming languages, but used much more infrequently--only when sendmail is installed or configured. The average system administrator doesn't get enough practice to truly master this inscrutable technology.Fortunately, there's help. The sendmail Cookbook provides step-by-step solutions for the administrator who needs to solve configuration problems fast. Say you need to configure sendmail to relay mail for your clients without creating an open relay that will be abused by spammers. A recipe in the Cookbook shows you how to do just that. No more wading through pages of dense documentation and tutorials and creating your own custom solution--just go directly to the recipe that addresses your specific problem.Each recipe in the sendmail Cookbook outlines a configuration problem, presents the configuration code that solves that problem, and then explains the code in detail. The discussion of the code is critical because it provides the insight you need to tweak the code for your own circumstances.The sendmail Cookbook begins with an overview of the configuration languages, offering a quick how-to for downloading and compiling the sendmail distribution. Next, you'll find a baseline configuration recipe upon which many of the subsequent configurations, or recipes, in the book are based. Recipes in the following chapters stand on their own and offer solutions for properly configuring important sendmail functions such as:
- Delivering and forwarding mail
- Relaying
- Masquerading
- Routing mail
- Controlling spam
- Strong authentication
- Securing the mail transport
- Managing the queue
- Securing sendmail
Osoby które kupowały "sendmail Cookbook. Administering, Securing & Spam-Fighting", wybierały także:
- Atak na sieć okiem hakera. Wykrywanie i eksploatacja luk w zabezpieczeniach sieci 87,41 zł, (48,95 zł -44%)
- TCP/IP w 24 godziny. Wydanie VI 116,88 zł, (65,45 zł -44%)
- TCP/IP od środka. Protokoły. Wydanie II 126,70 zł, (70,95 zł -44%)
- Atak na sieć okiem hakera. Wykrywanie i eksploatacja luk w zabezpieczeniach sieci 88,98 zł, (57,84 zł -35%)
- TCP/IP w 24 godziny. Wydanie VI 119,00 zł, (77,35 zł -35%)
Spis treści
sendmail Cookbook. Administering, Securing & Spam-Fighting eBook -- spis treści
- sendmail Cookbook
- SPECIAL OFFER: Upgrade this ebook with OReilly
- Preface
- Introduction
- Using This Cookbook
- Problem
- Solution
- Discussion
- See Also
- Audience
- Organization
- Software Versions
- Conventions
- Wed Like to Hear from You
- Acknowledgments
- 1. Getting Started
- Introduction
- The cf directory structure
- The cf/m4 directory
- The cf subdirectory
- The cf directory structure
- 1.1. Downloading the Latest Release
- Problem
- Solution
- Discussion
- See Also
- 1.2. Installing sendmail
- Problem
- Solution
- Discussion
- See Also
- 1.3. Compiling sendmail to Use LDAP
- Problem
- Solution
- Discussion
- See Also
- 1.4. Adding the regex Map Type to sendmail
- Problem
- Solution
- Discussion
- See Also
- 1.5. Compiling sendmail with SASL Support
- Problem
- Solution
- Discussion
- See Also
- 1.6. Compiling sendmail with STARTTLS Support
- Problem
- Solution
- Discussion
- See Also
- 1.7. Compiling in STARTTLS File Paths
- Problem
- Solution
- Discussion
- See Also
- 1.8. Building a sendmail Configuration
- Problem
- Solution
- Discussion
- The linux.m4 file
- The generic.m4 file
- Building and installing sendmail.cf
- See Also
- 1.9. Testing a New Configuration
- Problem
- Solution
- Discussion
- See Also
- 1.10. Logging sendmail
- Problem
- Solution
- Discussion
- See Also
- Introduction
- 2. Delivery and Forwarding
- Introduction
- 2.1. Accepting Mail for Other Hosts
- Problem
- Solution
- Discussion
- Using the use_cw_file feature
- Using sendmail.cf directly
- Using the bestmx_is_local feature
- See Also
- 2.2. Fixing the Alias0 Missing Map Error and Creating Simple Aliases
- Problem
- Solution
- Discussion
- See Also
- 2.3. Reading Aliases via LDAP
- Problem
- Solution
- Discussion
- See Also
- 2.4. Configuring Red Hat 7.3 to Read Aliases from a NIS Server
- Problem
- Solution
- Discussion
- Alternatives
- See Also
- 2.5. Configuring Solaris 8 to Read Aliases from a NIS Server
- Problem
- Solution
- Discussion
- See Also
- 2.6. Forwarding to an External Address
- Problem
- Solution
- Discussion
- See Also
- 2.7. Creating Mailing Lists
- Problem
- Solution
- Discussion
- See Also
- 2.8. Migrating Ex-Users to New Addresses
- Problem
- Solution
- Discussion
- Alternatives
- See Also
- 2.9. Delivering Mail to a Program
- Problem
- Solution
- Discussion
- See Also
- 2.10. Using Program Names in Mailing Lists
- Problem
- Solution
- Discussion
- See Also
- 2.11. Allowing Nonlogin Users to Forward to Programs
- Problem
- Solution
- Discussion
- See Also
- 2.12. Fixing a .forward Loop
- Problem
- Solution
- Discussion
- See Also
- 2.13. Enabling the User Database
- Problem
- Solution
- Discussion
- See Also
- 3. Relaying
- Introduction
- 3.1. Passing All Mail to a Relay
- Problem
- Solution
- Discussion
- See Also
- 3.2. Passing Outbound Mail to a Relay
- Problem
- Solution
- Discussion
- See Also
- 3.3. Passing Local Mail to a Mail Hub
- Problem
- Solution
- Discussion
- Alternatives
- See Also
- 3.4. Passing Apparently Local Mail to a Relay
- Problem
- Solution
- Discussion
- See Also
- 3.5. Passing UUCP Mail to a Relay
- Problem
- Solution
- Discussion
- See Also
- 3.6. Relaying Mail for All Hosts in a Domain
- Problem
- Solution
- Discussion
- Alternatives
- See Also
- 3.7. Relaying Mail for Individual Hosts
- Problem
- Solution
- Discussion
- See Also
- 3.8. Configuring Relaying on a Mail Exchanger
- Problem
- Solution
- Discussion
- Alternatives
- See Also
- 3.9. Loading Class $=R via LDAP
- Problem
- Solution
- Discussion
- See Also
- 3.10. Relaying Only Outbound Mail
- Problem
- Solution
- Discussion
- See Also
- 4. Masquerading
- Introduction
- 4.1. Adding Domains to All Sender Addresses
- Problem
- Solution
- Discussion
- See Also
- 4.2. Masquerading the Sender Hostname
- Problem
- Solution
- Discussion
- See Also
- 4.3. Eliminating Masquerading for the Local Mailer
- Problem
- Solution
- Discussion
- See Also
- 4.4. Forcing Masquerading of Local Mail
- Problem
- Solution
- Discussion
- See Also
- 4.5. Masquerading Recipient Addresses
- Problem
- Solution
- Discussion
- See Also
- 4.6. Masquerading at the Relay Host
- Problem
- Solution
- Discussion
- Alternatives
- See Also
- 4.7. Limiting Masquerading
- Problem
- Solution
- Discussion
- See Also
- 4.8. Masquerading All Hosts in a Domain
- Problem
- Solution
- Discussion
- See Also
- 4.9. Masquerading Most of the Hosts in a Domain
- Problem
- Solution
- Discussion
- Alternatives
- See Also
- 4.10. Masquerading the Envelope Address
- Problem
- Solution
- Discussion
- See Also
- 4.11. Rewriting the From Address with the genericstable
- Problem
- Solution
- Discussion
- See Also
- 4.12. Rewriting Sender Addresses for an Entire Domain
- Problem
- Solution
- Discussion
- See Also
- 4.13. Masquerading with LDAP
- Problem
- Solution
- Discussion
- See Also
- 4.14. Reading the genericstable via LDAP
- Problem
- Solution
- Discussion
- See Also
- 5. Routing Mail
- Introduction
- The mailertable
- The virtusertable
- LDAP Routing
- 5.1. Routing Mail to Special Purpose Mailers
- Problem
- Solution
- Discussion
- Alternatives
- See Also
- 5.2. Sending Error Messages from the mailertable
- Problem
- Solution
- Discussion
- See Also
- 5.3. Disabling MX Processing to Avoid Loops
- Problem
- Solution
- Discussion
- See Also
- 5.4. Routing Mail for Local Delivery
- Problem
- Solution
- Discussion
- Alternatives
- See Also
- 5.5. Reading the mailertable via LDAP
- Problem
- Solution
- Discussion
- See Also
- 5.6. Routing Mail for Individual Virtual Hosts
- Problem
- Solution
- Discussion
- Alternatives
- See Also
- 5.7. Routing Mail for Entire Virtual Domains
- Problem
- Solution
- Discussion
- Potential conflicts and solutions
- The catchall solution
- See Also
- 5.8. Reading the virtusertable via LDAP
- Problem
- Solution
- Discussion
- See Also
- 5.9. Routing Mail with LDAP
- Problem
- Solution
- Instructions for the LDAP administrator
- Instructions for the sendmail administrator
- Discussion
- LDAP configuration
- sendmail configuration
- Testing the results
- The ldap_routing feature
- See Also
- 5.10. Using LDAP Routing with Masquerading
- Problem
- Solution
- Discussion
- See Also
- Introduction
- 6. Controlling Spam
- Introduction
- The access database
- Blackhole lists with dnsbl and enhdnsbl
- MILTER
- Filtering with procmail
- Custom rulesets
- The access database
- 6.1. Blocking Spam with the access Database
- Problem
- Solution
- Discussion
- See Also
- 6.2. Preventing Local Users from Replying to Spammers
- Problem
- Solution
- Discussion
- Alternatives
- See Also
- 6.3. Reading the access Database via LDAP
- Problem
- Solution
- Discussion
- See Also
- 6.4. Using a DNS Blackhole List Service
- Problem
- Solution
- Discussion
- See Also
- 6.5. Building Your Own DNS Blackhole List
- Problem
- Solution
- Discussion
- See Also
- 6.6. Whitelisting Blacklisted Sites
- Problem
- Solution
- Discussion
- See Also
- 6.7. Filtering Local Mail with procmail
- Problem
- Solution
- Discussion
- See Also
- 6.8. Filtering Outbound Mail with procmail
- Problem
- Solution
- Discussion
- See Also
- 6.9. Invoking Special Header Processing
- Problem
- Solution
- Discussion
- See Also
- 6.10. Using Regular Expressions in sendmail
- Problem
- Solution
- Discussion
- See Also
- 6.11. Identifying Local Problem Users
- Problem
- Solution
- Discussion
- See Also
- 6.12. Using MILTER
- Problem
- Solution
- Discussion
- See Also
- 6.13. Bypassing Spam Checks
- Problem
- Solution
- Discussion
- See Also
- 6.14. Enabling Spam Checks on a Per-User Basis
- Problem
- Solution
- Discussion
- See Also
- Introduction
- 7. Authenticating with AUTH
- Introduction
- The AUTH Protocol
- Cyrus SASL
- The SASL Sendmail.conf file
- Passing Flags to SASL
- Authentication Macros and Rulesets
- 7.1. Offering AUTH Authentication
- Problem
- Solution
- Discussion
- See Also
- 7.2. Authenticating with AUTH
- Problem
- Solution
- Discussion
- See Also
- 7.3. Storing AUTH Credentials in the authinfo File
- Problem
- Solution
- Discussion
- See Also
- 7.4. Limiting Advertised Authentication Mechanisms
- Problem
- Solution
- Discussion
- See Also
- 7.5. Using AUTH to Permit Relaying
- Problem
- Solution
- Discussion
- See Also
- 7.6. Controlling the AUTH= Parameter
- Problem
- Solution
- Discussion
- See Also
- 7.7. Avoiding Double Encryption
- Problem
- Solution
- Discussion
- See Also
- 7.8. Requiring Authentication
- Problem
- Solution
- Discussion
- See Also
- 7.9. Selectively Requiring Authentication
- Problem
- Solution
- Discussion
- See Also
- Introduction
- 8. Securing the Mail Transport
- Introduction
- Transport Layer Security
- The certificate
- Using the access database with TLS
- OpenSSL
- Transport Layer Security
- 8.1. Building a Private Certificate Authority
- Problem
- Solution
- Discussion
- See Also
- 8.2. Creating a Certificate Request
- Problem
- Solution
- Discussion
- See Also
- 8.3. Signing a Certificate Request
- Problem
- Solution
- Discussion
- See Also
- 8.4. Configuring sendmail for STARTTLS
- Problem
- Solution
- Discussion
- See Also
- 8.5. Relaying Based on the CA
- Problem
- Solution
- Discussion
- See Also
- 8.6. Relaying Based on the Certificate Subject
- Problem
- Solution
- Discussion
- See Also
- 8.7. Requiring Outbound Encryption
- Problem
- Solution
- Discussion
- See Also
- 8.8. Requiring Inbound Encryption
- Problem
- Solution
- Discussion
- See Also
- 8.9. Requiring a Verified Certificate
- Problem
- Solution
- Discussion
- See Also
- 8.10. Requiring TLS for a Recipient
- Problem
- Solution
- Discussion
- See Also
- 8.11. Refusing STARTTLS Service
- Problem
- Solution
- Discussion
- See Also
- 8.12. Selectively Advertising STARTTLS
- Problem
- Solution
- Discussion
- Alternatives
- See Also
- 8.13. Requesting Client Certificates
- Problem
- Solution
- Discussion
- See Also
- Introduction
- 9. Managing the Queue
- Introduction
- 9.1. Creating Multiple Queues
- Problem
- Solution
- Discussion
- See Also
- 9.2. Using qf, df, and xf Subdirectories
- Problem
- Solution
- Discussion
- See Also
- 9.3. Defining Queue Groups
- Problem
- Solution
- Discussion
- See Also
- 9.4. Assigning Recipients to Specific Queues
- Problem
- Solution
- Discussion
- See Also
- 9.5. Using Persistent Queue Runners
- Problem
- Solution
- Discussion
- Emergency queue clearance
- See Also
- 9.6. Using a Queue Server
- Problem
- Solution
- Discussion
- See Also
- 9.7. Setting Protocol Timers
- Problem
- Solution
- Discussion
- See Also
- 10. Securing sendmail
- Introduction
- 10.1. Limiting the Number of sendmail Servers
- Problem
- Solution
- Discussion
- See Also
- 10.2. Limiting the Number of Network Accessible Servers
- Problem
- Solution
- Discussion
- See Also
- 10.3. Updating to Close Security Holes
- Problem
- Solution
- Discussion
- See Also
- 10.4. Patching to Close Security Holes
- Problem
- Solution
- Discussion
- See Also
- 10.5. Disabling Delivery to Programs
- Problem
- Solution
- Discussion
- See Also
- 10.6. Controlling Delivery to Programs
- Problem
- Solution
- Discussion
- See Also
- 10.7. Disabling Delivery to Files
- Problem
- Solution
- Discussion
- See Also
- 10.8. Bypassing User .forward Files
- Problem
- Solution
- Discussion
- Overriding the local_procmail feature
- See Also
- 10.9. Controlling Delivery to Files
- Problem
- Solution
- Discussion
- See Also
- 10.10. Running sendmail Non-Set-User-ID root
- Problem
- Solution
- Discussion
- See Also
- 10.11. Setting a Safe Default User ID
- Problem
- Solution
- Discussion
- See Also
- 10.12. Defining Trusted Users
- Problem
- Solution
- Discussion
- See Also
- 10.13. Identifying the sendmail Administrator
- Problem
- Solution
- Discussion
- See Also
- 10.14. Limiting the SMTP Command Set
- Problem
- Solution
- Discussion
- See Also
- 10.15. Requiring a Valid HELO
- Problem
- Solution
- Discussion
- See Also
- 10.16. Restricting Command-Line Options
- Problem
- Solution
- Discussion
- See Also
- 10.17. Denying DoS Attacks
- Problem
- Solution
- Discussion
- See Also
- About the Author
- Colophon
- SPECIAL OFFER: Upgrade this ebook with OReilly