CT NIKHEF Nov 2003 1 Mail services @ NIKHEF CT system support.
-
Upload
ruby-walton -
Category
Documents
-
view
217 -
download
3
Transcript of CT NIKHEF Nov 2003 1 Mail services @ NIKHEF CT system support.
![Page 1: CT NIKHEF Nov 2003 1 Mail services @ NIKHEF CT system support.](https://reader036.fdocuments.us/reader036/viewer/2022082710/56649db05503460f94a9d9e3/html5/thumbnails/1.jpg)
Nov 2003 1 CT NIKHEF
Mail services @ NIKHEFMail services @ NIKHEF
CT system support
![Page 2: CT NIKHEF Nov 2003 1 Mail services @ NIKHEF CT system support.](https://reader036.fdocuments.us/reader036/viewer/2022082710/56649db05503460f94a9d9e3/html5/thumbnails/2.jpg)
Nov 2003 2 CT NIKHEF
OutlineOutline
• NIKHEF SMTP mail service• Incoming mail (virus, spam, etc)• Read mail (imap/pop)• Mail clients
![Page 3: CT NIKHEF Nov 2003 1 Mail services @ NIKHEF CT system support.](https://reader036.fdocuments.us/reader036/viewer/2022082710/56649db05503460f94a9d9e3/html5/thumbnails/3.jpg)
Nov 2003 3 CT NIKHEF
NIKHEF SMTP mail NIKHEF SMTP mail serverserver
• Handles all incoming and outgoing mail• Implemented on two dual-processor Linux
servers(plus one ‘spare’ server)
• [email protected] does not allow mail relays(i.e. does not relay mails sent outside nikhef.nl domain)
![Page 4: CT NIKHEF Nov 2003 1 Mail services @ NIKHEF CT system support.](https://reader036.fdocuments.us/reader036/viewer/2022082710/56649db05503460f94a9d9e3/html5/thumbnails/4.jpg)
Nov 2003 4 CT NIKHEF
Incoming mailIncoming mail
1. Check sender on blacklist2. Check if virus in mail3. Analyze mail with spam criteria4. Check actions in .forward file5. Run mail processor ‘procmail’
![Page 5: CT NIKHEF Nov 2003 1 Mail services @ NIKHEF CT system support.](https://reader036.fdocuments.us/reader036/viewer/2022082710/56649db05503460f94a9d9e3/html5/thumbnails/5.jpg)
Nov 2003 5 CT NIKHEF
Incoming mail (1)Incoming mail (1)
• Check blacklist
• ‘nikhef’ blacklist (no external blacklist consulted)
• If mail sent from domain on our blacklist: bounce mail
![Page 6: CT NIKHEF Nov 2003 1 Mail services @ NIKHEF CT system support.](https://reader036.fdocuments.us/reader036/viewer/2022082710/56649db05503460f94a9d9e3/html5/thumbnails/6.jpg)
Nov 2003 6 CT NIKHEF
Incoming mail (2)Incoming mail (2)• Check for virus
• If virus: store mail, notify receiver (and sender)
From: [email protected]: VIRUS IN MAIL FOR YOU FROM [email protected]
V I R U S A L E R T Our virus checker found the 'W32/Dumaru-A' virus(es) in an email to you from: [email protected]. Delivery of the email was stopped! Please contact your system administrator for details. The ID of your quarantined message is: virus-20030905-102641-5661
![Page 7: CT NIKHEF Nov 2003 1 Mail services @ NIKHEF CT system support.](https://reader036.fdocuments.us/reader036/viewer/2022082710/56649db05503460f94a9d9e3/html5/thumbnails/7.jpg)
Nov 2003 7 CT NIKHEF
• Check for SPAM• Each incoming mail analyzed by spam filter
‘spamassassin’ • Standard spam criteria updated daily• Individual users can add their own criteria• If the ‘spam score’ is above a certain level, the mail is
marked as being ‘spam mail’• The default ‘spam score’ is set to 5 (but will be set lower soon)
Incoming mail (3)Incoming mail (3)
# SpamAssassin user preferences file. # How many hits before a mail is considered spam.required_hits 2
# Whitelist, accept allways nikhef.nl mails whitelist_from *@nikhef.nl
Example ~/.spamassassin/user_prefs
![Page 8: CT NIKHEF Nov 2003 1 Mail services @ NIKHEF CT system support.](https://reader036.fdocuments.us/reader036/viewer/2022082710/56649db05503460f94a9d9e3/html5/thumbnails/8.jpg)
Nov 2003 8 CT NIKHEF
• Check .forward configuration
• ‘~.forward’ file checked before delivering mail to user
• Mail can be forwarded to other user(s)• Programs like ‘vacation’ can be triggered
Incoming mail (4)Incoming mail (4)
# deliver mail to user ‘wimh’ and# run ‘vacation’ to reply a vacation message # to the sender
\wimh, "|/usr/bin/vacation wimh"
Example ~/.forward
![Page 9: CT NIKHEF Nov 2003 1 Mail services @ NIKHEF CT system support.](https://reader036.fdocuments.us/reader036/viewer/2022082710/56649db05503460f94a9d9e3/html5/thumbnails/9.jpg)
Nov 2003 9 CT NIKHEF
• Run mail processor ‘procmail’
• ‘procmail’ runs whenever ‘~/.procmailrc’ file exists
• Preferred solution to handle spam mail (without mail client!)
Incoming mail (5)Incoming mail (5)
# define directory to store mailMAILDIR=$HOME/mail
# recipe to store ‘spam-labelled’ mail in folder ‘spam’:0* ^X-Spam-Status: Yesspam
Example ~/.procmailrc
![Page 10: CT NIKHEF Nov 2003 1 Mail services @ NIKHEF CT system support.](https://reader036.fdocuments.us/reader036/viewer/2022082710/56649db05503460f94a9d9e3/html5/thumbnails/10.jpg)
Nov 2003 10 CT NIKHEF
Reading mailReading mail
• Mail stored on server ‘mail.nikhef.nl’• One file per user: /var/spool/mail/user
• Mail folder on server can be accessed• Directly from a unix system with ‘mail’ program (old)• From mail clients (like Eudora, Outlook, web mail,
etc)• using the ‘imap’ protocol (imap.nikhef.nl)• using the ‘pop’ protocol (pop3.nikhef.nl)
• Preferred solution: imap client
![Page 11: CT NIKHEF Nov 2003 1 Mail services @ NIKHEF CT system support.](https://reader036.fdocuments.us/reader036/viewer/2022082710/56649db05503460f94a9d9e3/html5/thumbnails/11.jpg)
Nov 2003 11 CT NIKHEF
imap.nikhef.nlimap.nikhef.nl• Mails stored in folders on imap.nikhef.nl
• Mail folders (or files) in home directory in Unix
• Mail always ‘leave on server’• ‘copy’ to mail client, not ‘move’ to mail client
• Mail administration always done on server• The same view from all clients (e.g. mail marked as ‘read’)
• Subscribe / unsubscribe mail folders• Use (un)subscribe to make folder (in)visible on client
• Authorisation to server• Unix username and password
![Page 12: CT NIKHEF Nov 2003 1 Mail services @ NIKHEF CT system support.](https://reader036.fdocuments.us/reader036/viewer/2022082710/56649db05503460f94a9d9e3/html5/thumbnails/12.jpg)
Nov 2003 12 CT NIKHEF
Migration from pop to Migration from pop to imapimap
• Configure mail client• Create mail accounts for imap.nikhef.nl instead of
pop3.nikhef.nl
• Copy ‘pop’ mail archives to Unix home dir• Ask assistance from CT helpdesk
• Do not mix ‘pop’ and ‘imap’ clients
![Page 13: CT NIKHEF Nov 2003 1 Mail services @ NIKHEF CT system support.](https://reader036.fdocuments.us/reader036/viewer/2022082710/56649db05503460f94a9d9e3/html5/thumbnails/13.jpg)
Nov 2003 13 CT NIKHEF
Supported mail clientsSupported mail clients
• Mail (Unix); simple, no attachments, not recommended
• Pine (Unix)
• Eudora (Unix/Windows)
• Netscape/Mozilla (Unix/Windows)
• Outlook (Windows)
• Secure web mail (web browser)
![Page 14: CT NIKHEF Nov 2003 1 Mail services @ NIKHEF CT system support.](https://reader036.fdocuments.us/reader036/viewer/2022082710/56649db05503460f94a9d9e3/html5/thumbnails/14.jpg)
Nov 2003 14 CT NIKHEF
Outside nikhef.nl Outside nikhef.nl domain domain
• Reading mail with imap/pop client• Always possible
• Send mail via smtp.nikhef.nl server• Use secure web mail• Or more advanced configure SSH client
• Smtp secure port forwarding
![Page 15: CT NIKHEF Nov 2003 1 Mail services @ NIKHEF CT system support.](https://reader036.fdocuments.us/reader036/viewer/2022082710/56649db05503460f94a9d9e3/html5/thumbnails/15.jpg)
Nov 2003 15 CT NIKHEF
Questions ??Questions ??