1 / 8

Comprehensive Mail System Architecture Requirements for Custom Domain Email Setup

This document outlines the requirements for building a robust mail system architecture for your domain. To establish your mail server, you need to acquire your own domain and set up an MX record. Key components include SMTP configuration using Postfix with SASL authentication, SSL/TLS support, and anti-spam mechanisms like SpamAssassin and ClamAV. The server should also implement POP3/IMAP using Dovecot, greylisting features, and address verification. Additionally, guidelines for user aliasing, rewriting, and sender verification are included, ensuring a well-secured email environment.

matteo
Télécharger la présentation

Comprehensive Mail System Architecture Requirements for Custom Domain Email Setup

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Homework 04 Mail System

  2. Architecture Mail Server sub.domain.tld domain.tld Internet SMTP POP3/IMAP Users

  3. Requirement (1/4) • Get you own domain • http://nctucs.net • Add a MX record for your mail server • Build a mail system • Anti-spam • Anti-virus • SMTP Server • Postfix • SASL Authentication • SSL and TLS support • SMTPs

  4. Requirement (2/4) • POP3/IMAP Server • Dovecot • SSL and TLS support • POP3s/IMAPs • MTA filter • Amavisd-new • SpamAssassin • ClamAV • MDA filter • Procmail • Record all log to /var/log/procmail.log • Drop the mail whose subject contains keyword “ 安安你好”

  5. Requirement (3/4) • Greylisting • An anti-spam measure • Postgrey • Transport • The next-hop destination of nasa.cs.nctu.edu.tw would be nahw4.nctucs.net • Alias • demodemo@nasa.cs.nctu.edu.tw • Rewriting • Redirect user+XYZ@domain.tld to user@domain.tld • Address masquerading • From user@domain.tld instead of user@sub.domain.tld • All users except root

  6. Requirement (4/4) • Sender address verification • Disconnect suspicious SMTP clients • Deny from dynamic host • For example, 211-76-240-234.dynamic.ntcu.net • Real-time Blackhole List (RBL) • http://www.spamhaus.org/ • Whitelist • http://www.spamhauswhitelist.com • http://www.dnswl.org/ • DKIM signature and verification • SPF record and check • sid-milter • A SPF record for your server • http://www.mailradar.com/spf/

  7. Bonus – Web-based interface • Webmail • Horde • Roundcube • Squirrelmail

  8. Hand-in • Due • 6/12 • Demo • TBA

More Related