| |
| |
| Preface | |
| |
| |
| |
| Getting Started | |
| |
| |
| |
| Downloading the Latest Release | |
| |
| |
| |
| Installing sendmail | |
| |
| |
| |
| Compiling sendmail to Use LDAP | |
| |
| |
| |
| Adding the regex Map Type to sendmail | |
| |
| |
| |
| Compiling sendmail with SASL Support | |
| |
| |
| |
| Compiling sendmail with STARTTLS Support | |
| |
| |
| |
| Compiling in STARTTLS File Paths | |
| |
| |
| |
| Building a sendmail Configuration | |
| |
| |
| |
| Testing a New Configuration | |
| |
| |
| |
| Logging sendmail | |
| |
| |
| |
| Delivery and Forwarding | |
| |
| |
| |
| Accepting Mail for Other Hosts | |
| |
| |
| |
| Fixing the Alias0 Missing Map Error and Creating Simple Aliases | |
| |
| |
| |
| Reading Aliases via LDAP | |
| |
| |
| |
| Configuring Red Hat 7.3 to Read Aliases from a NIS Server | |
| |
| |
| |
| Configuring Solaris 8 to Read Aliases from a NIS Server | |
| |
| |
| |
| Forwarding to an External Address | |
| |
| |
| |
| Creating Mailing Lists | |
| |
| |
| |
| Migrating Ex-Users to New Addresses | |
| |
| |
| |
| Delivering Mail to a Program | |
| |
| |
| |
| Using Program Names in Mailing Lists | |
| |
| |
| |
| Allowing Nonlogin Users to Forward to Programs | |
| |
| |
| |
| Fixing a forward Loop | |
| |
| |
| |
| Enabling the User Database | |
| |
| |
| |
| Relaying | |
| |
| |
| |
| Passing All Mail to a Relay | |
| |
| |
| |
| Passing Outbound Mail to a Relay | |
| |
| |
| |
| Passing Local Mail to a Mail Hub | |
| |
| |
| |
| Passing Apparently Local Mail to a Relay | |
| |
| |
| |
| Passing UUCP Mail to a Relay | |
| |
| |
| |
| Relaying Mail for All Hosts in a Domain | |
| |
| |
| |
| Relaying Mail for Individual Hosts | |
| |
| |
| |
| Configuring Relaying on a Mail Exchanger | |
| |
| |
| |
| Loading Class $=R via LDAP | |
| |
| |
| |
| Relaying Only Outbound Mail | |
| |
| |
| |
| Masquerading | |
| |
| |
| |
| Adding Domains to All Sender Addresses | |
| |
| |
| |
| Masquerading the Sender Hostname | |
| |
| |
| |
| Eliminating Masquerading for the Local Mailer | |
| |
| |
| |
| Forcing Masquerading of Local Mail | |
| |
| |
| |
| Masquerading Recipient Addresses | |
| |
| |
| |
| Masquerading at the Relay Host | |
| |
| |
| |
| Limiting Masquerading | |
| |
| |
| |
| Masquerading All Hosts in a Domain | |
| |
| |
| |
| Masquerading Most of the Hosts in a Domain | |
| |
| |
| |
| Masquerading the Envelope Address | |
| |
| |
| |
| Rewriting the From Address with the genericstable | |
| |
| |
| |
| Rewriting Sender Addresses for an Entire Domain | |
| |
| |
| |
| Masquerading with LDAP | |
| |
| |
| |
| Reading the genericstable via LDAP | |
| |
| |
| |
| Routing Mail | |
| |
| |
| |
| Routing Mail to Special Purpose Mailers | |
| |
| |
| |
| Sending Error Messages from the mailertable | |
| |
| |
| |
| Disabling MX Processing to Avoid Loops | |
| |
| |
| |
| Routing Mail for Local Delivery | |
| |
| |
| |
| Reading the mailertable via LDAP | |
| |
| |
| |
| Routing Mail for Individual Virtual Hosts | |
| |
| |
| |
| Routing Mail for Entire Virtual Domains | |
| |
| |
| |
| Reading the virtusertable via LDAP | |
| |
| |
| |
| Routing Mail with LDAP | |
| |
| |
| |
| Using LDAP Routing with Masquerading | |
| |
| |
| |
| Controlling Spam | |
| |
| |
| |
| Blocking Spam with the access Database | |
| |
| |
| |
| Preventing Local Users from Replying to Spammers | |
| |
| |
| |
| Reading the access Database via LDAP | |
| |
| |
| |
| Using a DNS Blackhole List Service | |
| |
| |
| |
| Building Your Own DNS Blackhole List | |
| |
| |
| |
| Whitelisting Blacklisted Sites | |
| |
| |
| |
| Filtering Local Mail with procmail | |
| |
| |
| |
| Filtering Outbound Mail with procmail | |
| |
| |
| |
| Invoking Special Header Processing | |
| |
| |
| |
| Using Regular Expressions in sendmail | |
| |
| |
| |
| Identifying Local Problem Users | |
| |
| |
| |
| Using MILTER | |
| |
| |
| |
| Bypassing Spam Checks | |
| |
| |
| |
| Enabling Spam Checks on a Per-User Basis | |
| |
| |
| |
| Authenticating with AUTH | |
| |
| |
| |
| Offering AUTH Authentication | |
| |
| |
| |
| Authenticating with AUTH | |
| |
| |
| |
| Storing AUTH Credentials in the authinfo File | |
| |
| |
| |
| Limiting Advertised Authentication Mechanisms | |
| |
| |
| |
| Using AUTH to Permit Relaying | |
| |
| |
| |
| Controlling the AUTH= Parameter | |
| |
| |
| |
| Avoiding Double Encryption | |
| |
| |
| |
| Requiring Authentication | |
| |
| |
| |
| Selectively Requring Authentication | |
| |
| |
| |
| Securing the Mail Transport | |
| |
| |
| |
| Building a Private Certificate Authority | |
| |
| |
| |
| Creating a Certificate Request | |
| |
| |
| |
| Signing a Certificate Request | |
| |
| |
| |
| Configuring sendmail for STARTTLS | |
| |
| |
| |
| Relaying Based on the CA | |
| |
| |
| |
| Relaying Based on the Certificate Subject | |
| |
| |
| |
| Requiring Outbound Encryption | |
| |
| |
| |
| Requring Inbound Encryption | |
| |
| |
| |
| Requiring a Verified Certificate | |
| |
| |
| |
| Requiring TLS for a Recipient | |
| |
| |
| |
| Refusing STARTTLS Service | |
| |
| |
| |
| Selectively Advertising STARTTLS | |
| |
| |
| |
| Requesting Client Certificates | |
| |
| |
| |
| Managing the Queue | |
| |
| |
| |
| Creating Multiple Queues | |
| |
| |
| |
| Using qf, df, and xf Subdirectories | |
| |
| |
| |
| Defining Queue Groups | |
| |
| |
| |
| Assigning Recipients to Specific Queues | |
| |
| |
| |
| Using Persistent Queue Runners | |
| |
| |
| |
| Using a Queue Server | |
| |
| |
| |
| Setting Protocol Timers | |
| |
| |
| |
| Securing sendmail | |
| |
| |
| |
| Limiting the Number of sendmail Servers | |
| |
| |
| |
| Limiting the Number of Network Accessible Servers | |
| |
| |
| |
| Updating to Close Security Holes | |
| |
| |
| |
| Patching to Close Security Holes | |
| |
| |
| |
| Disabling Delivery to Programs | |
| |
| |
| |
| Controlling Delivery to Programs | |
| |
| |
| |
| Disabling Delivery to Files | |
| |
| |
| |
| Bypassing User .forward Files | |
| |
| |
| |
| Controlling Delivery to Files | |
| |
| |
| |
| Running sendmail Non-Set-User-ID root | |
| |
| |
| |
| Setting a Safe Default User ID | |
| |
| |
| |
| Defining Trusted Users | |
| |
| |
| |
| Identifying the sendmail Administrator | |
| |
| |
| |
| Limiting the SMTP Command Set | |
| |
| |
| |
| Requiring a Valid HELO | |
| |
| |
| |
| Restricting Command-Line Options | |
| |
| |
| |
| Denying DoS Attacks | |
| |
| |
| Index | |