Mail system components. Electronic Mail MRA MUA MSA MAA. David Byers



Similar documents
CipherMail Gateway Quick Setup Guide

Mail agents. Introduction to Internet Mail. Message format (2) Authenticating senders

Simple Mail Transfer Protocol

Table of Contents. Electronic mail. History of (2) History of (1) history. Basic concepts. Aka (or according to Knuth)

Internet Technology 2/13/2013

Ficha técnica de curso Código: IFCAD241

How To Write An On A Linux Computer (No Mail) (No ) (For Ahem) (Or Ahem, For Ahem). (For An ) Or Ahem.Org) (Ahem) Or An

Networking Applications

Hosted CanIt. Roaring Penguin Software Inc. 26 April 2011

EMB. Basics. Goals of this lab: Prerequisites: LXB, NET, DNS

. Daniel Zappala. CS 460 Computer Networking Brigham Young University

. MIME is the protocol that was devised to allow non-ascii encoded content in an and attached files to an .

Exim4U. Server Solution For Unix And Linux Systems

Evolution of the WWW. Communication in the WWW. WWW, HTML, URL and HTTP. HTTP Abstract Message Format. The Client/Server model is used:

sendmail Cookbook Craig Hunt O'REILLY' Beijing Cambridge Farnham Koln Paris Sebastopol Taipei Tokyo

Network Services. SMTP, Internet Message Format. Johann Oberleitner SS 2006

security

Electronic Mail

Communication Systems Network Applications - Electronic Mail

Chapter 2 Application Layer. Lecture 5 FTP, Mail. Computer Networking: A Top Down Approach

Mail Avenger. David Mazières New York University

FTP and . Computer Networks. FTP: the file transfer protocol

The Application Layer. CS158a Chris Pollett May 9, 2007.

Management CSCU9B2 CSCU9B2 1

Migration Manual (For Outlook 2010)

Math SMTP Server Configuration

Internet Technologies Internet Protocols and Services

The basic groups of components are described below. Fig X- 1 shows the relationship between components on a network.

How To Configure Forefront Threat Management Gateway (Forefront) For An Server

Understanding SMTP authentication and securing your IBM Lotus Domino 8 server from spam

Serial Deployment Quick Start Guide

Internet Security [1] VU Engin Kirda

Configuring MDaemon for Centralized Spam Blocking and Filtering

Emacs SMTP Library. An Emacs package for sending mail via SMTP. Simon Josefsson, Alex Schroeder

CS43: Computer Networks . Kevin Webb Swarthmore College September 24, 2015

POP3 Connector for Exchange - Configuration

1 Accessing accounts on the Axxess Mail Server

Ciphermail Gateway Administration Guide

Cannot send Autosupport , error message: Unknown User

Workflow Configuration on R12/R11. High Level Steps. SENDMAIL configuration mostly done by System Administrator Workflow configuration for R12

, SNMP, Securing the Web: SSL

Migration Manual (For Outlook Express 6)

Domains Help Documentation This document was auto-created from web content and is subject to change at any time. Copyright (c) 2016 SmarterTools Inc.

Applications and Services. DNS (Domain Name System)

CHARTER BUSINESS custom hosting faqs 2010 INTERNET. Q. How do I access my ? Q. How do I change or reset a password for an account?

Articles Fighting SPAM in Lotus Domino

Evolution of the WWW. Communication in the WWW. WWW, HTML, URL and HTTP. HTTP - Message Format. The Client/Server model is used:

Using WinGate 6 . Concepts, Features, and Configurations.

Domain Name System (DNS)

Objective This howto demonstrates and explains the different mechanisms for fending off unwanted spam .

Advanced Settings. Help Documentation

Implementing MDaemon as an Security Gateway to Exchange Server

Security. Help Documentation

AXIGEN Mail Server. Quick Installation and Configuration Guide. Product version: 6.1 Document version: 1.0

Collax Mail Server. Howto. This howto describes the setup of a Collax server as mail server.

SMTP Servers. Determine if an message should be sent to another machine and automatically send it to that machine using SMTP.

How to Configure edgebox as an Server

Government of Canada Managed Security Service (GCMSS) Annex A-5: Statement of Work - Antispam

A D M I N I S T R A T O R V 1. 0

Linux Administrator (Advance)

Fighting Spam: Tools, Tips, and Techniques

GL-275: Red Hat Linux Network Services. Course Outline. Course Length: 5 days

If your response to any of the questions above was Yes, then SmarterMail Enterprise Edition may be right for you.

ing from The E2 Shop System address Server Name Server Port, Encryption Protocol, Encryption Type, SMTP User ID SMTP Password

ETH Zürich - Mail Filtering Service

Configuring Your Gateman Server

Postfix. by Rod Roark

FTP: the file transfer protocol

Security 7.4 Administrator s Guide

Help for System Administrators

Security 8.0 Administrator s Guide

Issue 2EN. Nokia and Nokia Connecting People are registered trademarks of Nokia Corporation

1. The Web: HTTP; file transfer: FTP; remote login: Telnet; Network News: NNTP; SMTP.

Electronic mail security. MHS (Message Handling System)

CPSC Network Programming. , FTP, and NAT.

Firewall, Mail and File server solution

Mail Service Reference

2- Electronic Mail (SMTP), File Transfer (FTP), & Remote Logging (TELNET)

CSCI-1680 SMTP Chen Avin

Postfix Configuration and Administration

CS615 - Aspects of System Administration

How to Setup your Account -Apple Mail for Mac OS X 1- Open Mail

escan SBS 2008 Installation Guide

QMAIL & SMTP: A Secure Application for an Unsecure Protocol. Orr Dunkelman. orrd@vipe.technion.ac.il. January 27, 2004 SMTP and QMAIL Slide 1

To install the SMTP service:

The Application Layer: DNS

Introduction. -- some basic concepts and terminology -- examples for attacks on protocols -- main network security services

Filtering Mail with Milter. David F. Skoll Roaring Penguin Software Inc.

SpamPanel Level Manual Version 1 Last update: March 21, 2014 SpamPanel

Lesson Plans Configuring Exchange Server 2007

Mail Services. Easy-to-manage Internet mail solutions featuring best-in-class open source technologies. Features

Technical Note. ISP Protection against BlackListing. FORTIMAIL Deployment for Outbound Spam Filtering. Rev 2.2

SpamPanel Reseller Level Manual 1 Last update: September 26, 2014 SpamPanel

Celframe - Easy Linux - Lesson 8 - Server

Outlook Express. Make Changes in Red: Open up Outlook Express. From the Menu Bar. Tools to Accounts - Click on Mail Tab.

Transcription:

Electronic Mail PRINCIPLES DNS ARCHITECTURES SPAM Mail system components () () David Byers MRA davby@ida.liu.se IDA/ADIT/IISLAB Mail User Agent Reads and writes e-mail Writes e-mail to using (usually) Reads e-mail delivered by or retrieved by MRA Mozilla Thunderbird Outlook Express MRA Mail Retrieval Agent Retrieves e-mail from Makes mail available to Fetchmail Integrated in Thunderbird etc. Mail Access Agent Authenticates /user Reads e-mail from mailbox Makes e-mail available to Mail Submission Agent Accepts mail from Prepares and delivers to Courier IMAPD Postfix postdrop+ sendmail-msa 1

Mail Transfer Agent Routes incoming mail Determines which to send mail to May alter mail being routed Postfix + + + Sendmail Mail Delivery Agent Accepts mail from Delivers mail to mailbox Delivers mail to other Postfix, smtp, pipe mail. ( delivery) procmail ( delivery) Mail system components Path of a message MRA () () 1. New message written Mail is written in Mail is submitted to 2. Reception of message at authenticates user checks that user is authorized to submit mail may rewrite headers submits message to reports success to 3. Reception of message at checks that sender and recipient are valid and permitted checks that contents are valid and permitted may run content filters may rewrite headers determines which to submit mail to (, etc) submits mail to If unsuccessful, queues mail for later delivery Path of a message Postfix architecture 4. Reception of message at sends message to remote using (example) 5. Rcpt of message at remote Same as step 3 Message submitted to 7. detects new message signals retrieves message 8. Message read presents message to user Network Network smtp virtual 6. Reception of message at may check filters/rules delivers message to appropriate mail store Postdrop queue postdrop sendmail pipe File, Command Network Network File Local Command 2

The role of DNS Simple Mail Transfer Protocol Default: TCP port 25 RFC 2821 E Extensions Example %telnet mail.ida.liu.se 25 Trying 130.236.177.25... Connected to mail.ida.liu.se. Escape character is '^]'. 220 mail.ida.liu.se E Sendmail 8.13.3/8.13.3; Mon, 29 Aug 2005 13:34:42 +0200 (CEST) EHLO lap-65.ida.liu.se Problem: which server to contact for a mail address? Solution: look up MX record in DNS Text-based protocol No encryption No authentication 250-mail.ida.liu.se Hello gedrix.ida.liu.se [130.236.176.11], pleased to meet you MAIL FROM:<davby@ida.liu.se> 250 2.1.0 <davby@ida.liu.se>... Sender ok RCPT TO:<info@samizdat.se> 250 2.1.5 <info@samizdat.se>... Recipient ok DATA 354 Enter mail, end with "." on a line by itself From: David Byers <davby@ida.liu.se> To: Samizdat Info <info@samizdat.se> Date: Mon, 29 Aug 2005 13:38:00 +0100 Subject: Testing Body text. Example: example.com MX example.com MX example.com MX 10 mail1.example.com. 10 mail2.example.com. 20 mx.nodomain.edu.. 250 2.0.0 j7tbygxf001051 Message accepted for delivery QUIT 221 2.0.0 portofix.ida.liu.se closing connection Structure of a message Things the does Envelope From dialog Header Message metadata Specified in RFC 2822 Body Sequence of ASCII characters Separated from body by CRLF Syntax message::= headers CRLF body headers ::= header headers ε header ::= name : value CRLF Return-Path: andjo@ida.liu.se Delivery-Date: Fri May 14 08:38:34 2004 Received: from diag7.ida.liu.se (diag7.ida.liu.se [130.236.177.217]) by portofix.ida.liu.se (8.12.11/8.12.11) with E id i423760; Fri, 14 May 2004 08:38:31 +0200 (MEST) Received: (from andjo@host) by diag7.ida.liu.se (8.12.10+Sun/8.12.10/Submit) id i401197; Fri, 14 May 2004 08:38:31 +0200 (CEST) Date: Fri, 14 May 2004 08:38:31 +0200 From: Andreas Johansson <andjo@ida.liu.se> To: David Byers <davby@ida.liu.se> Cc: pjn@ida.liu.se Subject: Re: =?ISO-8859-1?Q?N=E4tverksproblem?= Message-Id: <20040514083831.495c66a2.andjo@ida.liu.se> In-Reply-To: <41r7togybd.fsf@obel19.ida.liu.se> References: <41r7togybd.fsf@obel19.ida.liu.se> Organization: =?ISO-8859-1?Q?Link=F6pings?= universitet X-Mailer: Sylpheed version 0.9.6 (GTK+ 1.2.10; sparc-sun-solaris2.9) Mime-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 X-Virus-Scanned: clamd / ClamAV 0.70, clamav-milter 0.70j X-Spam-Flag: NO X-Scanned-By: milter-spamc/0.15.245 ( [130.236.177.25]); pass Header rewriting Addition of received header Addition of Message-ID Address rewriting Example rewriting Removal of host name Addition of domain name davby david.byers Mail routing Find server for recipient address Queue mail for submission Re-submit failed messages Send delivery status notifications example Find MX records for address Try records in ascending order Try A record for address 3

Things the does Postfix content filters Content filtering Scan for virus content Check validity of attachments Check size of messages Check for spam Common spam checks Keyword/feature filters IP address blacklists Greylisting Authorization Check submitting host IP Check from address Check recipient address Check contents Typically permitted Mail from systems Mail to recipients Mail from trusted hosts to any recipient Three flavors Built-in content inspection After queue content filter Before queue content filter Built-in content inspection Body checks, Header checks Regexp checks on message For stopping specific problems (filter) bounce (forwarded) 4

Postfix content filters Postfix content filters Three flavors Built-in content inspection After queue content filter Before queue content filter After queue content filter After mail has been accepted Heavy-duty filtering Need to avoid spurious DSNs Postfix postdrop Postfix sendmail (filter) bounce (forwarded) Postfix queues Three flavors Built-in content inspection After queue content filter Before queue content filter Before queue content filter Before mail is accepted Heavy-duty filtering Only for low-volume sites Content filter (filter) Content filter pipe smtp Relay restrictions Greylisting DNS-based blocklists Spam protection Restrictions Denying relay 220 solzhenitsyn.samizdat.se E Postfix HELO gedrix.ida.liu.se 250 solzhenitsyn.samizdat.se MAIL FROM:<davby@ida.liu.se> 250 Ok RCPT TO:<byers@lysator.liu.se> 554 <byers@lysator.liu.se>: Relay access denied Greylisting in action 220 portofix.ida.liu.se E Sendmail 8.13.3/8.13.3 HELO metzengerstein.visit.se 250 portofix.ida.liu.se Hello metzengerstein.visit.se [212.214.112.221] MAIL FROM:<info@samizdat.se> 250 2.1.0 <info@samizdat.se>... Sender ok RCPT TO:<davby@ida.liu.se> 451 4.7.1 Greylisting in action, please come back in 00:10:00 DNS-based blocklists Blocklists work like in-addr.arpa lookup %host -t TXT 1.185.167.195.l1.spews.dnsbl.sorbs.net 1.185.167.195.l1.spews.dnsbl.sorbs.net TXT "! [1] XPD Limited, see http://spews.org/ask.cgi?s3007" Architectures %host -t TXT 1.185.167.195.dnsbl.sorbs.net 1.185.167.195.dnsbl.sorbs.net TXT "Spam Received See: http://www.sorbs.net/lookup.shtml?195.167.185.1" 5

-side outgoing mail Outgoing mail has an queues mail Smarthost All mail through one Central configuration has no If central is down, no mail can be sent Failover Better reliability Load balancing Better reliability Better performance Multiple s Incoming mail Single storage server Mail storage Load-balanced s Distributed filesystem on SAN One front-end multiple backends Username-based load balancing SAN Users a-m Users m-z Reading mail Centralized example Load-balanced s with SAN / (AUTH) SAN IMAP IMAP IMAP POP IMAP Webmail Users a-j User-base load balancing L7 Switch Users k-r Users s-z SAN 6

Corporate example (I) Corporate example (II) smtp.example.com mx.eng.example.com mail.sales.example.com smtp.example.com Address rewrite mx.eng.example.com mail.sales.example.com eng.example.com MX smtp.example.com. sales.example.com MX smtp.example.com. rnd.example.com MX smtp.example.com. example.com MX smtp.example.com. Split DNS Split DNS eng.example.com MX mx.eng.example.com. sales.example.com MX mail.sales.example.com. rnd.example.com MX pluto.rnd.example.com. eng.example.com MX mx.eng.example.com. sales.example.com MX mail.sales.example.com. rnd.example.com MX pluto.rnd.example.com. Summary E-mail components,, etc Postfix architecture Address rewriting Content filtering Spam protection Relaying, greylisting Mail system architectures 7

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information