Wayne Catterton <[EMAIL PROTECTED]> wrote: > So I looked at alternative MTA's and found postfix. It looks like > it's exactly what I'm looking for, however I am not sure on what all I > need to install to keep the mail system fairly secure and protected. > So I started looking through installation documentation for various > setup's, and so far, I've decided I wanted: postfix, dovecot (imap > and pop3), dspam (of course), virtual users/domains (mysql setup), > clamav, sasl (smtpauth), mysql, Mailman, squirrelmail, and some kinda > of GUI frontend (I saw postfix admin and I think that will do it).
Postfix is secure, but throwing a kitchen sink of other software on the same machine might introduce insecurities. :-) > What I'm wondering is if I missed something, is there something vital > I missed as far as security/mail processing? You should consider amavisd-new (which can integrate SpamAssassin or DSPAM and ClamAV or another virus scanner). http://www.ijs.si/software/amavisd/ > Also as far as dspam, do you have any reccomendations, I've looked > through documentation on it, however it can be fairly complex. I know > I want to have a spam and nospam address for users to forward email > to. maybe setup some spam/nospam IMAP folders as well (to be used > from squirrelmail as another mechanism). There is more than one way to do it (tm), but I use Stefan Jakobs' sal-wrapper: https://po2.uni-stuttgart.de/~rusjako/sal-wrapper -- so users can send spam and ham to dedicated addresses that dump mail to sa-learn. You can probably do something similar with DSPAM if you choose to use it. -- Sahil Tandon <[EMAIL PROTECTED]>
