| |
| |
Preface | |
| |
| |
| |
Getting Started | |
| |
| |
| |
Downloading the Latest Release | |
| |
| |
| |
Installing sendmail | |
| |
| |
| |
Compiling sendmail to Use LDAP | |
| |
| |
| |
Adding the regex Map Type to sendmail | |
| |
| |
| |
Compiling sendmail with SASL Support | |
| |
| |
| |
Compiling sendmail with STARTTLS Support | |
| |
| |
| |
Compiling in STARTTLS File Paths | |
| |
| |
| |
Building a sendmail Configuration | |
| |
| |
| |
Testing a New Configuration | |
| |
| |
| |
Logging sendmail | |
| |
| |
| |
Delivery and Forwarding | |
| |
| |
| |
Accepting Mail for Other Hosts | |
| |
| |
| |
Fixing the Alias0 Missing Map Error and Creating Simple Aliases | |
| |
| |
| |
Reading Aliases via LDAP | |
| |
| |
| |
Configuring Red Hat 7.3 to Read Aliases from a NIS Server | |
| |
| |
| |
Configuring Solaris 8 to Read Aliases from a NIS Server | |
| |
| |
| |
Forwarding to an External Address | |
| |
| |
| |
Creating Mailing Lists | |
| |
| |
| |
Migrating Ex-Users to New Addresses | |
| |
| |
| |
Delivering Mail to a Program | |
| |
| |
| |
Using Program Names in Mailing Lists | |
| |
| |
| |
Allowing Nonlogin Users to Forward to Programs | |
| |
| |
| |
Fixing a forward Loop | |
| |
| |
| |
Enabling the User Database | |
| |
| |
| |
Relaying | |
| |
| |
| |
Passing All Mail to a Relay | |
| |
| |
| |
Passing Outbound Mail to a Relay | |
| |
| |
| |
Passing Local Mail to a Mail Hub | |
| |
| |
| |
Passing Apparently Local Mail to a Relay | |
| |
| |
| |
Passing UUCP Mail to a Relay | |
| |
| |
| |
Relaying Mail for All Hosts in a Domain | |
| |
| |
| |
Relaying Mail for Individual Hosts | |
| |
| |
| |
Configuring Relaying on a Mail Exchanger | |
| |
| |
| |
Loading Class $=R via LDAP | |
| |
| |
| |
Relaying Only Outbound Mail | |
| |
| |
| |
Masquerading | |
| |
| |
| |
Adding Domains to All Sender Addresses | |
| |
| |
| |
Masquerading the Sender Hostname | |
| |
| |
| |
Eliminating Masquerading for the Local Mailer | |
| |
| |
| |
Forcing Masquerading of Local Mail | |
| |
| |
| |
Masquerading Recipient Addresses | |
| |
| |
| |
Masquerading at the Relay Host | |
| |
| |
| |
Limiting Masquerading | |
| |
| |
| |
Masquerading All Hosts in a Domain | |
| |
| |
| |
Masquerading Most of the Hosts in a Domain | |
| |
| |
| |
Masquerading the Envelope Address | |
| |
| |
| |
Rewriting the From Address with the genericstable | |
| |
| |
| |
Rewriting Sender Addresses for an Entire Domain | |
| |
| |
| |
Masquerading with LDAP | |
| |
| |
| |
Reading the genericstable via LDAP | |
| |
| |
| |
Routing Mail | |
| |
| |
| |
Routing Mail to Special Purpose Mailers | |
| |
| |
| |
Sending Error Messages from the mailertable | |
| |
| |
| |
Disabling MX Processing to Avoid Loops | |
| |
| |
| |
Routing Mail for Local Delivery | |
| |
| |
| |
Reading the mailertable via LDAP | |
| |
| |
| |
Routing Mail for Individual Virtual Hosts | |
| |
| |
| |
Routing Mail for Entire Virtual Domains | |
| |
| |
| |
Reading the virtusertable via LDAP | |
| |
| |
| |
Routing Mail with LDAP | |
| |
| |
| |
Using LDAP Routing with Masquerading | |
| |
| |
| |
Controlling Spam | |
| |
| |
| |
Blocking Spam with the access Database | |
| |
| |
| |
Preventing Local Users from Replying to Spammers | |
| |
| |
| |
Reading the access Database via LDAP | |
| |
| |
| |
Using a DNS Blackhole List Service | |
| |
| |
| |
Building Your Own DNS Blackhole List | |
| |
| |
| |
Whitelisting Blacklisted Sites | |
| |
| |
| |
Filtering Local Mail with procmail | |
| |
| |
| |
Filtering Outbound Mail with procmail | |
| |
| |
| |
Invoking Special Header Processing | |
| |
| |
| |
Using Regular Expressions in sendmail | |
| |
| |
| |
Identifying Local Problem Users | |
| |
| |
| |
Using MILTER | |
| |
| |
| |
Bypassing Spam Checks | |
| |
| |
| |
Enabling Spam Checks on a Per-User Basis | |
| |
| |
| |
Authenticating with AUTH | |
| |
| |
| |
Offering AUTH Authentication | |
| |
| |
| |
Authenticating with AUTH | |
| |
| |
| |
Storing AUTH Credentials in the authinfo File | |
| |
| |
| |
Limiting Advertised Authentication Mechanisms | |
| |
| |
| |
Using AUTH to Permit Relaying | |
| |
| |
| |
Controlling the AUTH= Parameter | |
| |
| |
| |
Avoiding Double Encryption | |
| |
| |
| |
Requiring Authentication | |
| |
| |
| |
Selectively Requring Authentication | |
| |
| |
| |
Securing the Mail Transport | |
| |
| |
| |
Building a Private Certificate Authority | |
| |
| |
| |
Creating a Certificate Request | |
| |
| |
| |
Signing a Certificate Request | |
| |
| |
| |
Configuring sendmail for STARTTLS | |
| |
| |
| |
Relaying Based on the CA | |
| |
| |
| |
Relaying Based on the Certificate Subject | |
| |
| |
| |
Requiring Outbound Encryption | |
| |
| |
| |
Requring Inbound Encryption | |
| |
| |
| |
Requiring a Verified Certificate | |
| |
| |
| |
Requiring TLS for a Recipient | |
| |
| |
| |
Refusing STARTTLS Service | |
| |
| |
| |
Selectively Advertising STARTTLS | |
| |
| |
| |
Requesting Client Certificates | |
| |
| |
| |
Managing the Queue | |
| |
| |
| |
Creating Multiple Queues | |
| |
| |
| |
Using qf, df, and xf Subdirectories | |
| |
| |
| |
Defining Queue Groups | |
| |
| |
| |
Assigning Recipients to Specific Queues | |
| |
| |
| |
Using Persistent Queue Runners | |
| |
| |
| |
Using a Queue Server | |
| |
| |
| |
Setting Protocol Timers | |
| |
| |
| |
Securing sendmail | |
| |
| |
| |
Limiting the Number of sendmail Servers | |
| |
| |
| |
Limiting the Number of Network Accessible Servers | |
| |
| |
| |
Updating to Close Security Holes | |
| |
| |
| |
Patching to Close Security Holes | |
| |
| |
| |
Disabling Delivery to Programs | |
| |
| |
| |
Controlling Delivery to Programs | |
| |
| |
| |
Disabling Delivery to Files | |
| |
| |
| |
Bypassing User .forward Files | |
| |
| |
| |
Controlling Delivery to Files | |
| |
| |
| |
Running sendmail Non-Set-User-ID root | |
| |
| |
| |
Setting a Safe Default User ID | |
| |
| |
| |
Defining Trusted Users | |
| |
| |
| |
Identifying the sendmail Administrator | |
| |
| |
| |
Limiting the SMTP Command Set | |
| |
| |
| |
Requiring a Valid HELO | |
| |
| |
| |
Restricting Command-Line Options | |
| |
| |
| |
Denying DoS Attacks | |
| |
| |
Index | |