CSE/ISE 311: Systems Administra5on Email Administra5on

Similar documents
Management CSCU9B2 CSCU9B2 1

Anti-Spam Configuration in Outlook 2003 INDEX. Webmail settings Page 2. Client settings Page 6. Creation date Version 1.2

Configuring Your Gateman Server

2- Electronic Mail (SMTP), File Transfer (FTP), & Remote Logging (TELNET)

Google Apps for Education at UTK

. MIME is the protocol that was devised to allow non-ascii encoded content in an and attached files to an .

1. Open Thunderbird. If the Import Wizard window opens, select Don t import anything and click Next and go to step 3.

Hosted CanIt. Roaring Penguin Software Inc. 26 April 2011

CS43: Computer Networks . Kevin Webb Swarthmore College September 24, 2015

Migration Manual (For Outlook 2010)

Using WinGate 6 . Concepts, Features, and Configurations.

1 Accessing accounts on the Axxess Mail Server

How To Send From A Netbook To A Spam Box On A Pc Or Mac Or Mac (For A Mac) On A Mac Or Ipo (For An Ipo) On An Ipot Or Ipot (For Mac) (For

. Daniel Zappala. CS 460 Computer Networking Brigham Young University

Table of Contents. Electronic mail. History of (2) History of (1) history. Basic concepts. Aka (or according to Knuth)

Grapevine Mail User Guide

POP3 Connector for Exchange - Configuration

About this documentation

Sending an Encrypted/Unencrypted Message. Let's Begin: Log In and Set Up Security Questions. Create Additional ProMailSource Accounts:

Networking Applications

Outlook Express POP Instructions - Bloomsburg University Students

Setting up and controlling

Toll Free: International:

MailStore Server 5.0 Documentation

WineWeb Account Services

Getting started with IMAP for Aggi What is IMAP?

eprism Security Appliance 6.0 Intercept Anti-Spam Quick Start Guide

XGENPLUS SECURITY FEATURES...

BOTTOM UP THINKING SETUP INSTRUCTIONS. Unique businesses require unique solutions CLIENT GUIDE

THUNDERBIRD SETUP (STEP-BY-STEP)

Renewal of the Services

Issue 2EN. Nokia and Nokia Connecting People are registered trademarks of Nokia Corporation

K7 Mail Security FOR MICROSOFT EXCHANGE SERVERS. v.109

2- Electronic Mail (SMTP), File Transfer (FTP), & Remote Logging (TELNET)

Installation Guide For Choic Enterprise Edition

MailStore Server 7 Documentation

HGC SUPERHUB HOSTED EXCHANGE / 2007 SMART PANEL USER GUIDE

Booth Gmail Configuration

Vodafone Hosted Services. Getting your . User guide

How To Write An On A Linux Computer (No Mail) (No ) (For Ahem) (Or Ahem, For Ahem). (For An ) Or Ahem.Org) (Ahem) Or An

About the Junk Filter

Linux Network Administration

Web Hosting Getting Started Guide

PORTLANDDIOCESE.ORG - How to Connect Table of Contents

Configuring Outlook 2013 For IMAP Connections

Exim4U. Server Solution For Unix And Linux Systems

IceWarp to IceWarp Server Migration

Migration User Guides: The Console Application Setup Guide

Welcome to ECBuzz.com! Please go through this document carefully to make the experience of owning and using a website an enjoyable one.

After you've enabled POP/IMAP access in i.mail, you need to configure your client to download i.mail messages.

Collateral Damage. Consequences of Spam and Virus Filtering for the System. Peter Eisentraut 22C3. credativ GmbH.

Chapter 2 Application Layer. Lecture 5 FTP, Mail. Computer Networking: A Top Down Approach

Barracuda Spam Firewall

Mail NIKHEF

How To Configure Using Different Clients

Installation Steps on Desktop Clients

CipherMail Gateway Quick Setup Guide

How To Send Mail From A Macbook Access To A Pc Or Ipad With A Password Protected Address (Monroe Access) On A Pc (For Macbook) Or Ipa (For Ipa) On Pc Or Macbook (For

WEBMAIL USER MANUAL AN INTRODUCTION TO WLINK WEBMAIL. Table of content:

Migration Manual (For Outlook Express 6)

Getting Started Guide Unix Platform

BUILT FOR YOU. Contents. Cloudmore Exchange

Internet Technology 2/13/2013

Icebox - Sendio SPAM Filter

Division of Information Technology Lehman College CUNY

Windows Mail POP Instructions - Bloomsburg University Students

CHARTER BUSINESS custom hosting faqs 2010 INTERNET. Q. How do I access my ? Q. How do I change or reset a password for an account?

Government of Canada Managed Security Service (GCMSS) Annex A-5: Statement of Work - Antispam

Migration Project Plan for Cisco Cloud Security

Solutions IT Ltd Virus and Antispam filtering solutions

The basic groups of components are described below. Fig X- 1 shows the relationship between components on a network.

Security. Help Documentation

Kerio Connect. Step-by-Step. Kerio Technologies

isecur User Guide for iphone

OPS Data Quick Start Guide

Aloaha Mail and Archive

Move Your to AT&T Website Solutions

Configuring Your Client

A D M I N I S T R A T O R V 1. 0

StarterPlus Mailbox Software Setup Guide

Ciphermail for BlackBerry Quick Start Guide

How To Access Your Cpa.Com From Your Computer Or A Mobile Phone Or Ipad (For A Free Download) Without Having To Use A Webmail Account

Tutorial Details Product Demonstrated: X-301 Estimated Completion Time: 15 minutes

Articles Fighting SPAM in Lotus Domino

How to Setup your Account -Apple Mail for Mac OS X 1- Open Mail

Initial Setup of Mozilla Thunderbird with IMAP for OS X Lion

Configuring MDaemon for Centralized Spam Blocking and Filtering

Avira Managed Security AMES FAQ.

HOW WILL I KNOW THAT I SHOULD USE THE IAS CONTINUITY SERVICE?

User Guide. Time Warner Cable Business Class Cloud Solutions Control Panel. Hosted Microsoft Exchange 2007 Hosted Microsoft SharePoint 2007

Mail Services. Easy-to-manage Internet mail solutions featuring best-in-class open source technologies. Features

Managing Junk Mail. About the Junk Mail Filter

Mail Avenger. David Mazières New York University

Downloading and Using Mozilla Thunderbird By Brazos Price Spring 2005

Transcription:

Email Administra5on Don Porter

Theme Email systems started with a pre5y simple design Everyone trusted each other, it was nice Then spam came along Lots of complexity and distrust to try to reduce spam

What is an email? A simple message format: Envelope (server- internal roudng info, not user- visible) Headers (basically the history of the message handling) These are viewable in your email app Body (the text you see in your email app)

Example email header: Received: from edge2.cs.stonybrook.edu (130.245.9.211) by hubcas2.cs.stonybrook.edu (130.245.9.209) with MicrosoT SMTP Server (TLS) id 14.3.158.1; Thu, 13 Feb 2014 14:46:08-0500 Received: from sbmta2.cc.stonybrook.edu (129.49.2.199) by edge2.cs.stonybrook.edu (130.245.9.211) with MicrosoT SMTP Server (TLS) id 14.3.174.1; Thu, 13 Feb 2014 14:46:05-0500 Received: from mailrelay.stonybrook.edu (mrs.stonybrook.edu [129.49.1.206]) by sbmta2.cc.stonybrook.edu (8.14.4/8.14.4) with ESMTP id s1djk7z7008862; Thu, 13 Feb 2014 14:46:07-0500 (EST) Received: from chalk2.ic.sunysb.edu (bbgw.ic.sunysb.edu [129.49.1.57]) by mailrelay.stonybrook.edu (8.14.2/8.14.2) with ESMTP id s1djk7lm019593; Thu, 13 Feb 2014 14:46:07-0500 (EST) Received: from chalk2 (localhost.localdomain [127.0.0.1]) by chalk2.ic.sunysb.edu (8.13.8/8.13.8) with ESMTP id s1djk6zq029777; Thu, 13 Feb 2014 14:46:06-0500 Date: Thu, 13 Feb 2014 14:46:06-0500 From: Donald Porter <Donald.Porter@stonybrook.edu> To: - CSE 311.01 / ISE 311.01 Systems AdministraDon - Spring 2014:; Message- ID: <1552521034.1214.1392320766984.JavaMail.bbuser@chalk2> Subject: - CSE 311.01 / ISE 311.01 Systems AdministraDon - Spring 2014: 2 ClarificaDons on Lab 1 Content- Type: muldpart/alternadve; boundary="- - - - =_Part_1213_176163800.1392320766979" X- Brightmail- Tracker: AAAAAgAAAUAAAAFS X- Brightmail- Tracker: AAAAAgAAAUAAAAFU Return- Path: Donald.Porter@stonybrook.edu X- MS- Exchange- OrganizaDon- PRD: stonybrook.edu Received- SPF: None (edge2.cs.stonybrook.edu: Donald.Porter@stonybrook.edu does not designate permi5ed sender hosts) X- MS- Exchange- OrganizaDon- AnDspam- Report: v=2.1 cv=jqni8qic c=1 sm=1 tr=0 a=pn1q8qifydhm8yza5mcig==:117 a=763spsvpnpbe6mgv/ff7eq==:17 a=8v5ath39twia:10 a=1ov9t8kembsa:10 a=yns6qj0zrxwa:10 a=smqkl0zb6yzfvfi7fqqa:9 a=qexddo2ut3ya:10 a=cb515-41zfoa:10 a=sp84-5c6czia:10;origip: 129.49.2.199;SCL:- 1 X- MS- Exchange- OrganizaDon- AVStamp- Mailbox: MSFTFF;1;0;0 0 0 X- MS- Exchange- OrganizaDon- SCL: - 1 X- MS- Exchange- OrganizaDon- SenderIdResult: NONE X- MS- Exchange- OrganizaDon- AuthSource: edge2.cs.stonybrook.edu X- MS- Exchange- OrganizaDon- AuthAs: Anonymous X- MS- Exchange- OrganizaDon- AnDspam- Report: MessageSecurityAnDspamBypass MIME- Version: 1.0

Mail Transport Agent (MTA) Accepts emails from the Internet Delivers to local users Or sends outgoing messages Every site that accepts email runs one IdenDfied with an MX record in DNS Listens on Port 25

Simple MTA Example CSE/ISE 311: Systems Administra5on 25 MTA Da Internet Send me! stonybrook.edu Ok 25 MTA From: don@google.com To: porter@stonybrook.edu google.com

Simple MTA Example Send me! Ok, you re here 25 MTA Da Internet stonybrook.edu 25 MTA From: don@google.com To: porter@stonybrook.edu google.com

SMTP Simple Mail Transport Protocol It really is simple. Main operadons: Send a message Check if an address is valid Expand an address (for lists and forwarding) Email basically works by lots of MTA servers passing messages to each other

So what is Apple Mail, or Outlook? A User Agent (UA) Usually provides a program to type emails UlDmately packaged and sent to an MTA using SMTP

Simple MTA Example, redux 25 MTA UA Da Internet stonybrook.edu 25 MTA From: don@google.com To: porter@stonybrook.edu google.com

So how does email get to my inbox? Once an email reaches its desdnadon MTA, Handed off to a mail delivery agent (MDA) MDA can be the same program or a different daemon as MTA MDA finds inbox for the recipient and stores the email

Where is my inbox? On Unix/Linux, it is either a file or directory 2 Popular formats: mbox single file maildir directory with one file per- message Literally, a file like: /home/porter/mail/mbox Each message has a special delimiter between it Maybe shared with other machines over NFS Users can get their mail without logging into MDA machine

Old- School Mail Reading Programs like mu5, pine, elm would read these mail files directly on a server You could even open them in vi or emacs!

Text- based email reading (mu5) From: h5p://greek0.net/mu5.html

Pointy- Clicky Mail Reading Not everyone runs a command line on a Linux server Mail for the rest of us? 2 popular protocols: POP and IMAP Make a nice GUI app, like Thunderbird or Apple Mail Download inbox using POP or IMAP SDll send using SMPT Access Agent (AA) serves POP or IMAP

POP vs. IMAP Post Office Protocol (POP) Download everything and (usually) delete it from inbox on server Designed when people had one PC Internet Mail Access Protocol (IMAP) Sync a local copy of mailbox with server Work offline and sync later MulDple clients Laptop, desktop, iphone, ipad Be5er choice for most modern users

Puzng it together CSE/ISE 311: Systems Administra5on Gimme Email! (IMAP) UA Da Internet mail.stonybrook.edu 25 MTA MDA /home/porter/mbox From: porter@stonybrook.edu To: porter@stonybrook.edu 143 AA

Recap so far User Agent: Program for human user Sending mail? Protocol: SMTP Emails exchanged by MTAs Delivered to inboxes by MDAs Inboxes are just simple files (mostly) Receiving mail? Read inbox through an AA Protocols: POP or IMAP

Main operadons: Send a message SMTP Review Check if an address is valid Expand an address (for lists and forwarding) Anything missing?

Are my emails private? No Sent in plain text over internet, inbox in plain text If you want privacy, use encrypdon in your UA PGP/GPG are good choices

How do I know email came from sender? You don t Anyone can put any name/email address in the from field Of course, replies may not go to you This is why people who care use PGP/GPG to sign messages

CSE/ISE 311: Systems Administra5on Spam Junk email Unwanted ads, harassing emails, etc. OTen selling illegal products Why is it called spam? A massive nuisance But also a massive business A lot of modern system organizadon designed to limit/prevent spam We will refine previous model of email to cope with spam

CSE/ISE 311: Systems Administra5on An all- too- common example 25 I love games! Da Internet MTA stonybrook.edu 80 HTTP super- fun- awesome- game.com

Example Recap User downloads sotware SoTware includes trojan horse malware Malware connects to email servers and sends spam from user s computer over SMTP Other SMTP servers then relay the email throughout the internet Ideas how to fix this?

Refinement 1 SMTP servers (as presented) are dumb Accept and relay mail from anyone! Idea: Only send mail from authendcated users Mail Submission Agent (MSA) Basically, provides a log- in system, and then forwards mail to MTA MTA configured to only relay mail from MSA MSA oten listens on port 587

Puzng it together CSE/ISE 311: Systems Administra5on Gimme I m Don, Email! my password (IMAP) is password UA Da Internet mail.stonybrook.edu 587 25 MSA MTA MDA /home/porter/mbox From: porter@stonybrook.edu To: porter@stonybrook.edu 143 AA

Refinement, recap In the good old days, any email server would send your mail for you Made email (and spam) easy Now, only servers that know you will relay email for you Spam program at least has to steal your account info now

Problem 2 The first example was about relaying Using stonybrook.edu to relay email to lots of other addresses (gmail, hotmail, etc) Fixed in part by: Only accepdng new email for legidmate users in stonybrook.edu Only relaying email from authendcated stonybrook.edu users What about spam for users of stonybrook.edu?

Refinement 2 Be choosier about who you accept email from Whitelists: known- good email servers (accept) Blacklists: known- bad email servers (reject) Services that provide both for administrators Unknown servers? (Gray lists) Reject: May lose email Delay: Spammers oten impadent

Refinement 3: Spam DetecDon Before the MDA delivers spam, run it through a filter If it passes, deliver to inbox If it fails, put in Junk folder How do spam filters work?

2 Strategies for Spam Filters Fuzzy matching against known spam VerbaDm matches foiled by including Dme of day Services track these things for admins Bayesian learning filters Users mark things as spam or ham Basically training a fancy- dancy machine learning classifier Classifier applied to new mail Learns user preferences over Dme

2 Phase Spam PrevenDon My advice (and the book s): Do quick checks at the MTA (white list, black list) Then do detailed checks (spam filtering) in MDA Why? Quickly drop obvious garbage ShiT load for heavier- weight scanning to MDA

Summary MTAs exchange mail all over internet Only relay outgoing mail from MSA (to prevent spam) Only accept incoming mail from white/gray list (to prevent spam) MDA delivers mail ATer it passes a filter (to prevent spam) Stores it in a simple inbox file UA gets mail using IMAP/POP Sends it via MSA using SMTP

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information