03-04-2015
External SMTP server
Hi,
We current use an email/hosted exchange server (provided by 3rd party company).
Our production DNS (RH5) server has got the MX rec configured for this 3rd party mail relay server. So in order to resolve hostnames to send outbound mails an A record entry is also required on the external DNS server based on individual servers public IP adddress (in order to relay mails outbound).
The following concern has been raised re security:
- Having public addresses on a public DNS; servers are advertised publically therefore security risk.
In my opinion the production servers are located in the DMZ and so no internet facing IP can traverse onto the LAN without hitting the DMZ.
With the outbound connection configured on the external fw to only allow certain IP address to connect to a certain destination address - so this should remove any risk, as no one would see it.
Question: Would it be better practice to create our own SMTP server and have one public IP address presented to the external DNS server or is this an unnecessary overkill?
...interested in your thoughts/opinions on this.
Regards,
D.
10 More Discussions You Might Find Interesting
1. Solaris
im running Solaris9.
sendmail version 8.13
every now and then my smtp server is being blacklisted resulting to relay denied to some of my client.
what is the very first thing i have to implement?
thanks (1 Reply)
Discussion started by: uwagon
1 Replies
2. AIX
Hello,
Looking for Document how to install / configure SMTP Server on AIX 6.1
is it through smitty menu ? (3 Replies)
Discussion started by: filosophizer
3 Replies
3. Shell Programming and Scripting
i am new in AIX i am trying to write a script to take a backup for specific files on server to and check error log if backup success send email to administrator , script done except for sending mail , i try to configure sendmail on aix to use our exchange server to send emails but still get error... (0 Replies)
Discussion started by: ahmed_salah
0 Replies
4. UNIX for Dummies Questions & Answers
Hi all,I know, that this is very common issue, but I can't find where is the problem... I have Solaris 10 installed.I want to send mail to external SMTP server, like:echo "letter body"| mailx -s "subject" test@test.comBut I donno what kind of changes I have to do in /etc/hosts and sendmail.cf or... (5 Replies)
Discussion started by: nypreH
5 Replies
5. AIX
Hey everyone,
I have an issue where email is working fine in our Windows environments but is blowing up in our AIX environments.
Here is the related functions that are getting called:
int get_smtp_line( void )
{
char ch = '.';
char in_data ;
char * index;
int retval = 0;
... (4 Replies)
Discussion started by: ctote
4 Replies
6. UNIX and Linux Applications
Background:
I am replicating a set of servers into a "bubble" for testing. Those systems cannot be aware they are in a "bubble" so I must replicate all external services. I have successfully replicated most of those services except SMTP. I would like to configure an SMTP server that collects... (0 Replies)
Discussion started by: NFN_NLN
0 Replies
7. Shell Programming and Scripting
Here is the code:
<?php
//new function
function loadini($path) {
$fp = fopen($path, "r");
$fpcontents = fread($fp, filesize($path));
fclose($fp);
return $fpcontents;
}
$to = "test@test.com";
$nameto = "notme";
$from = "test";
$namefrom = "Who From"; ... (0 Replies)
Discussion started by: galford
0 Replies
8. Ubuntu
Is there any way to create an SMTP mail server will all granular permissions to it so that I can read emails which that server receives through any scripting language and also reply from the same server automatically? (3 Replies)
Discussion started by: sandeepcm
3 Replies
9. UNIX for Dummies Questions & Answers
hi guys
I have to configure a SMTP server using Postfix, ok let me tell the domain is located at godaddy so my smtp postfix server has to use that domain let's say mycompany.com
so anyone knows how to configure postfix using this way?
or postfix is easy to configure?
thanks a lot (3 Replies)
Discussion started by: karlochacon
3 Replies
10. Web Development
Hello list,
I want to be able to send email directly from my linux box. I have both a CentOS and Debian installation. I am by no means an expert when it comes to all of the SMTP servers. I have been testing different configs by installing and uninstalling sendmail, postfix, and exim4.
... (2 Replies)
Discussion started by: landossa
2 Replies
PIUS(1) General Commands Manual PIUS(1)
NAME
pius - PGP Individual UID Signer
SYNOPSIS
pius [options] -s <signer-keyid> <keyid> [<keyid> ...]
pius [options] -A -r <keyring-path> -s <signer-keyid>
DESCRIPTION
pius The PGP Individual UID Signer (PIUS) is a tool for individually signing all of the UIDs on a set of keys and encrypt-emailing each one
to it's respective email address. This drastically reduces the time and errors involved in signing keys after a keysigning party.
OPTIONS
--version
show program's version number and exit
-h or --help
show this help message and exit
-a or --use-agent
Use pgp-agent instead of letting gpg prompt the user or every UID. [default: false]
-A or --all-keys
Sign all keys on the keyring. Requires -r.
-b PATH or --gpg-path=PATH
Path to gpg binary. [default: /usr/bin/gpg]
-e or --encrypt-outfiles
Encrypt output files with respective keys.
-d or --debug
Enable debugging output.
-H HOSTNAME or --mail-host
Hostname of SMTP server. [default: localhost]
-i or --interactive
Use the pexpect module for signing and drop to the gpg shell for entering the passphrase. [default: false]
-I or --import
Also import the unsigned keys from the keyring into the default keyring. Ignored if -r is not specified, or if it's the same as the
default keyring.
-m EMAIL or --mail
Email the encrypted, signed keys to the respective email addresses. EMAIL is the address to send from. See also -H and -p.
-M FILE or --mail-text
Use the text in FILE as the body of email when sending out emails instead of the default text. To see the default text use --print-
default-email. Requires -m.
-n EMAIL or --override-email
Rather than send to the user, send to this address. Mostly useful for debugging.
-o OUTDIR or --out-dir
Directory to put signed keys in. [default: /tmp/pius_out]
-O or --no-pgp-mime
Do not use PGP/Mime when sending email.
-p or --cache-passphrase
Cache private key passphrase in memory and provide it to gpg instead of letting gpg prompt the user for every UID. [default: true]
-P PORT or --mail-port
Port of SMTP server. [default: 25]
-r KEYRING or --keyring
The keyring to use. Be sure to specify full or relative path. Just a filename will cause GPG to assume relative to ~/.gnupg.
[default: ~/.gnupg/pubring.gpg]
-s SIGNER or --signer
The keyid to sign with (required).
-S or --mail-tls
Use STARTTLS when talking to the SMTP server.
-t TMP_DIR or --tmp-dir
Directory to put temporary stuff in. [default: /tmp/pius_tmp]
-T or --print-default-email
Print the default email.
-u USER or --mail-user
Authenticate to the SMTP server, and use username USER. You will be prompted for the password. Implies -S.
-v or --verbose
Be more verbose.
AUTHOR
PIUS was written by Phil Dibowitz <phil@ipom.com>
This manual page was written by Luke Cycon <lcycon@gmail.com>, for the Debian project (but may be used by others).
MARCH 2010 PIUS(1)