Proper way to secure a mail server
Hey guys, more of a web developer here, but I have intermediate-level skills in managing linux, it's been super fun so far!
I just recently got a mail server up and running on my Linux box (CentOX 6.4 x64, mail server is iRedMail) and I've been researching some of the things I need to do to lock it down to avoid spammers taking over my account and getting blacklisted. My question is, what do you guys consider most important when securing a mail server? If you could link off to an article you love or something, that would be great. Some steps I've taken: -Whitelists and Blacklists setup -SPF setup on the domain's DNS -Running SSL encryption over the network -Mail server is not an Open Relay Ran a test of my server at this address: http://mxtoolbox.com/diagnostic.aspx and everything passed.... I really think I need to setup a query to SpamHaus or on of the DNSBLs but I'm not entirely sure how to do that. I have been referencing this article: http://www.vircom.com/security/top-1...-email-server/ But I'm not really sure how to do some of that stuff, a more tutorial-based article would be preferred. Thanks guys! Any help is appreciated, big or small! |
http://wiki.centos.org/HowTos/Amavisd .. this is a pretty common configuration. I use this in conjunction with policyd-weight but there are other policy servers such as postgrey - http://wiki.centos.org/HowTos/postgrey.
|
Quote:
|
Greylisting shouldn't affect many legitimate customers and if it does then they can work around it by relaying all outbound email through their ISP's mail servers. Sending email directly from a SOHO setup in a dynamic range is almost guaranteed to be dropped.
|
All times are GMT -5. The time now is 01:43 PM. |