You are viewing a plain text version of this content. The canonical link for it is here.

Posted to server-user@james.apache.org by zebhed <ze...@gmx.net> on 2009/02/05 20:31:52 UTC

How to secure SMTP service?

Hello there, 

I am using James only as a SMTP server. I have disabled the other services
(POP3, etc.). James runs on my root server. I don´t have any mailserver user
accounts. I am only sending noreply emails (no spam, just for user
registration :) ).

I have managed to configure James to run as an SMTP server. Now I want to
secure the SMTP service. I have identified three parts in the config file
that seem to be relevant. 

<smtpserver>
 <authRequired>true</authRequired>
 <authorizedAddresses>mydomain.com</authorizedAddresses>
</smtpserver>

<mailet match="RemoteAddrNotInNetwork=mydomain.com" class="ToProcessor">
  <processor> relay-denied </processor>
  <notice>550 - Requested action not taken: relaying denied</notice>
</mailet>

The problem is I am a mailserver beginner. 

I wonder if this is the right configuration for maximum security. Or do I
have to alter these settings? 
Are there any other relevant security settings for SMTP?


-- 
View this message in context: http://www.nabble.com/How-to-secure-SMTP-service--tp21859236p21859236.html
Sent from the James - Users mailing list archive at Nabble.com.


---------------------------------------------------------------------
To unsubscribe, e-mail: server-user-unsubscribe@james.apache.org
For additional commands, e-mail: server-user-help@james.apache.org

Re: How to secure SMTP service?

Posted by zebhed <ze...@gmx.net>.

Can anybody please give some insight into securing the SMTP service?



zebhed wrote:
> 
> Hello there, 
> 
> I am using James only as a SMTP server. I have disabled the other services
> (POP3, etc.). James runs on my root server. I don´t have any mailserver
> user accounts. I am only sending noreply emails (no spam, just for user
> registration :) ).
> 
> I have managed to configure James to run as an SMTP server. Now I want to
> secure the SMTP service. I have identified three parts in the config file
> that seem to be relevant. 
> 
> <smtpserver>
>  <authRequired>true</authRequired>
>  <authorizedAddresses>mydomain.com</authorizedAddresses>
> </smtpserver>
> 
> <mailet match="RemoteAddrNotInNetwork=mydomain.com" class="ToProcessor">
>   <processor> relay-denied </processor>
>   <notice>550 - Requested action not taken: relaying denied</notice>
> </mailet>
> 
> The problem is I am a mailserver beginner. 
> 
> I wonder if this is the right configuration for maximum security. Or do I
> have to alter these settings? 
> Are there any other relevant security settings for SMTP?
> 
> 
> 

-- 
View this message in context: http://www.nabble.com/How-to-secure-SMTP-service--tp21859236p21995060.html
Sent from the James - Users mailing list archive at Nabble.com.


---------------------------------------------------------------------
To unsubscribe, e-mail: server-user-unsubscribe@james.apache.org
For additional commands, e-mail: server-user-help@james.apache.org