Deploy Secure Messaging Solution using Sendmail & Dovecot Servers with ClamAV on Linux v1.2

Please download to get full document.

View again

of 9
19 views
All materials on our website are shared by users. If you have any questions about copyright issues, please report us to resolve them. We are always happy to assist you.

Download

Document Related
Document Description
1.0 Introduction Over the last decade, the popularity of domain hosting has increased exponentially for many companies of all sizes. All these domains need to be hosted somewhere, but corporate-level hosting of Web sites and mail domains can be exorbitantly expensive for start-up and small to medium size businesses. With the growth of the Internet, e-mail has also quickly become the main vehicle to spread information through corporate users and the public at large. As the demand for fast, cheap and reliable e-mail grows, more individuals and business large and small are turning to open source Linux to provide a fast, cheap and reliable solution. And Sendmail is at the forefront of this cool messaging technology and it can be easily scaled-up. One of the best solutions is using virtual hosting, which allows multiple domains to be housed on a single server or server cluster. This is a valuable strategy for both a large company with the hardware and bandwidth to host hundreds of domains and a small business with a mere two domains to control its hosting solution with ease. In this Hands-on Lab session, we’ll take a look at how to configure Sendmail to work on a single machine, but can also be scaled up to handle more than one domain. There will be need to lock it down from security point of view. Also we’ll give our users’ ability to access their email using RoundCube Webmail client via Dovecot POP/IMAP server. Sendmail is a general purpose internetwork email routing facility that supports many kinds of mail-transfer and -delivery methods, including the Simple Mail Transfer Protocol (SMTP) used for email transport over the Internet. It’s currently the most popular mail transfer agent (MTA) on the Internet. Its popularity is due in part to its position as the standard MTA under most variants of the Linux/Unix-like operating systems. Sendmail was originally developed by Eric Allman, in 1979, as delevermail , which first shipped with BSD 4.0. This program was not very flexible and required configuration at compile time. With the growth of TCP protocol and other factors, it became obvious that delevermail was not flexible enough to handle these new demands. Eric Allman had to recreate Sendmail from scratch, and what he produced has become the standard for MTAs. Rather than reject messages that did not conform to protocols, sendmail is designed to be tolerant of these messages. For those individuals who have never configured an e-mail server, this hands-on manual will demonstrate how to configure sendmail 8.13.8 after a fresh install of CentOS5. Dovecot is an open source IMAP and POP3 server for Linux/UNIX-like systems, written primarily with security in mind. Apple Inc. includes Dovecot for email services in Mac OS X 10.6 Snow Leopard Server. Developed by Timo Sirainen, Dovecot was first released in July 2002. Dovecot primarily aims to be a lightweight, fast and easy to set up open source messaging server. It can work with standard mbox, Maildir, and its own experimental native high-performance dbox formats. It is fully compatible with UW IMAP and Courier IMAP servers’ implementation of them, as well as mail clients accessing the mailboxes directly. Dovecot also includes a Mail delivery agent (called Local delivery agent in Dovecot’s documentation), with optional Sieve filtering support. It also supports a variety of authentication schemas for IMAP and POP access including CRAM-MD5 and the more secure DIGEST-MD5. It’s a Mail Delivery Agent is simple and easy to install. In this HowTo guide and lab session, we’ll explain how to set it up as an IMAP or POP3 server. For alternate IMAP/POP3 servers see Courier or Cyrus. We also need to lockdown our Sendmail server to secure our Sendmail server against cyber-criminals and malwares. For this we’ll use Clamd. Clamd which comes integrated with ClamAV and Clamav-db fits the bill for our task. It’s a multi-threaded daemon that uses libclamav to scan files for viruses. The
Document Share
Document Tags
Document Transcript
  Global Open Versity, ICT Labs Install & Configure Sendmail & Dovecot with ClamAV on Linux v1.2 April 2007, Kefa Rabah, Global Open Versity, Vancouver Canada www.globalopenversity.org   EBT102 – Sendmail Server Administration Training 1 Global Open VersityIT Systems Integration Hands-on Linux Labs Training Manual Deploy Secure Messaging Solution using Sendmail & Dovecot Servers withClamAV Kefa RabahGlobal Open Versity, Vancouver Canada krabah@globalopenversity.org www.globalopenversity.org  Table of Contents Page No. DEPLOY SECURE MESSAGING SOLUTION USING SENDMAIL & DOVECOTSERVERS WITH CLAMAV 1   1.0 Introduction 1   Part 1: What you need to start CentOS5 Installation 3   Step 1: Install CentOS52 3   Part 2: Install & Configure DNS Server 4   Part 3: Install and Configure Sendmail Server 5   Step 1: Verify that DNS is working correctly 5   Step 2: Install & Configure Sendmail Server 5   Step 3: The /etc/mail/sendmail.mc File 6   Step 4: Why Sendmail Only Listens On the Loopback Interface By Default 6   Step 5: Test sending mail through SMTP using Telnet 10   Part 4: Allowing Remote Access to your Mail Server using IMAP/POP 11   Step 1: Install & Configure Dovecot POP3/IMAP Server for RHEL/CentOS 5 12   Step 2: Configure Dovecot – putting it all-together 13   Step 3: Test Dovecot POP3/IMAP 14   Step 4: Test Dovecot IMAP 15   Step 5: Authentication with Dovecot 15   Step 6: Accessing your emails from Outside 16   Step 7: Setup Email Clients 16   Part 5: Lock it Down with Clamd Antivirus solution 16   Step 1: Setting up Antivirus and Antispam Connectors 17   Part 6: Lock it Down with MailScanner Antivirus solution 17   Step 1: Install & Setup MailScanner on CentOS5/RHE5 17   Part 7: Setup SquirrelMail Webmail on RHEL/CentOS 5 18   Step 1: Install SquirrelMail 18   Step 2: Testing SquirrelMail 21   Part 8: Performance Tuning & Troubleshooting 23   Step1: Troubleshooting 23    Global Open Versity, ICT Labs Install & Configure Sendmail & Dovecot with ClamAV on Linux v1.2 April 2007, Kefa Rabah, Global Open Versity, Vancouver Canada www.globalopenversity.org   EBT102 – Sendmail Server Administration Training 2 Summary 24   Part 9: Need More Training on Linux: 24   Sendmail Server Administration Training 24   Part 10: Hands-on Lab Assignments 25   Linux Administration Training 25   A GOV Open Access Technical Academic Publications Enhancing education & empowering people worldwide through eLearning in the 21st Century    Global Open Versity, ICT Labs Install & Configure Sendmail & Dovecot with ClamAV on Linux v1.2 April 2007, Kefa Rabah, Global Open Versity, Vancouver Canada www.globalopenversity.org   EBT102 – Sendmail Server Administration Training 1   Global Open VersitySystems Integration Hands-on Linux Labs Training Manual Deploy Secure Messaging Solution using Sendmail & Dovecot Servers withClamAV   By Kefa Rabah,krabah@globalopenversity.orgOct., 28, 2009GTS Institute  1.0 Introduction Over the last decade, the popularity of domain hosting has increased exponentially for many companies of all sizes. All these domains need to be hosted somewhere, but corporate-level hosting of Web sites andmail domains can be exorbitantly expensive for start-up and small to medium size businesses.With the growth of the Internet, e-mail has also quickly become the main vehicle to spread informationthrough corporate users and the public at large. As the demand for fast, cheap and reliable e-mail grows,more individuals and business large and small are turning to open source Linux to provide a fast, cheapand reliable solution. And Sendmail is at the forefront of this cool messaging technology and it can beeasily scaled-up. One of the best solutions is usingvirtual hosting, which allows multiple domains to behoused on a single server or server cluster. This is a valuable strategy for both a large company with thehardware and bandwidth to host hundreds of domains and a small business with a mere two domains tocontrol its hosting solution with ease. In this Hands-on Lab session, we’ll take a look at how to configureSendmail to work on a single machine, but can also be scaled up to handle more than one domain. Therewill be need to lock it down from security point of view. Also we’ll give our users’ ability to access their email using RoundCube Webmail client via Dovecot POP/IMAP server. Sendmail is a general purpose internetwork email routing facility that supports many kinds of mail-transfer and -delivery methods, including the Simple Mail Transfer Protocol (SMTP) used for email transport over the Internet. It’s currently the most popular mail transfer agent (MTA) on the Internet. Its popularity is duein part to its position as the standard MTA under most variants of the Linux/Unix-like operating systems.Sendmail was srcinally developed by Eric Allman, in 1979, as delevermail , which first shipped withBSD 4.0. This program was not very flexible and required configuration at compile time. With the growth of TCP protocol and other factors, it became obvious that delevermail was not flexible enough to handlethese new demands. Eric Allman had to recreate Sendmail from scratch, and what he produced hasbecome the standard for MTAs. Rather than reject messages that did not conform to protocols, sendmailis designed to be tolerant of these messages. For those individuals who have never configured an e-mailserver, this hands-on manual will demonstrate how to configure sendmail 8.13.8 after a fresh install of CentOS5. Dovecot is anopen sourceIMAP and POP3 server for Linux/UNIX-like systems, written primarily withsecurity in mind. Apple Inc. includes Dovecot for email services in Mac OS X 10.6 Snow Leopard Server.Developed by Timo Sirainen, Dovecot was first released in July 2002. Dovecot primarily aims to be alightweight, fast and easy to set up open source messaging server. It can work with standard mbox ,
Search Related
We Need Your Support
Thank you for visiting our website and your interest in our free products and services. We are nonprofit website to share and download documents. To the running of this website, we need your help to support us.

Thanks to everyone for your continued support.

No, Thanks