[NTLUG:Discuss] Making a spam shield server
Jay Urish
j at unixwolf.net
Mon Feb 12 10:16:52 CST 2007
I have heard of this setup before.. A few major fortune 500's do this...
I think you need to run postfix under CentOS and configure it as a
relay. It should forward all mail for whateveryourdomainis.com to the
internal IP..
The other option is dump mickyshaft exchange because it sux0rz.
. Daniel wrote:
> Here's the scenario:
>
> At the office is a MS Exchange 2003 server. I would like to put up a
> Linux box (got it loaded and just about ready to go) running CentOS 4.4 to
> accept mail for the domain and forward it on to the Exchange server after
> processing through greylisting and spam assassin's filters.
>
> The problem is that I get a user unknown error. So either I create users
> manually (not gonna happen) or come up with a way to link the server to the
> Active Directory domain via LDAP as a means of determining whether or not a
> user exists.
>
> There is a sendmail configuration that will allow for simply accepting ALL
> mail incoming for a domain, but that's a dangerous proposition considering
> all the directory lookup bots running out there. (Ever check your mail logs
> and see attempts at delivery to
> alphabetically sorted random names? They are scanning for valid
> accounts... heaven forbid I give spammers a reason to hit my mail server
> with billions of invalid email account requests.) Further, I get no
> indication that SpamAssassin gets its hands on the mail before passing it
> on which is kind of useless.
>
> So anyone with any such knowledge care to share?
>
> (What I have so far is a CentOS 4.4 box configured with relaydelay and spam
> assassin. It seems to be working just fine and just needs configuration to
> suit the needs described above.)
>
> _________________________________________________________________
> Windows VistaとWindows Live のキャンペ・踉札鵙苳諮報をお届け
> http://promotion.live.jp/
>
>
> _______________________________________________
> http://www.ntlug.org/mailman/listinfo/discuss
--
Jay Urish CCNA Network Engineer
http://jay.unixwolf.net
Home)972.691.0125 Cell)972.965.6229
More information about the Discuss
mailing list