http://wiki.define-technology.com/mediawiki-1.35.0/index.php?action=history&feed=atom&title=Redhat%3AEmail_Security 2026-05-05T01:25:08Z Revision history for this page on the wiki MediaWiki 1.35.0 http://wiki.define-technology.com/mediawiki-1.35.0/index.php?title=Redhat:Email_Security&diff=3329&oldid=prev 2013-08-26T11:02:36Z

<p>Created page with &quot;== General User Security == The default security of a mail server allows all users to use the local smtp mail server with out a password. This can be changed in the configur...&quot;</p> <p><b>New page</b></p><div>== General User Security ==<br /> <br /> The default security of a mail server allows all users to use the local smtp mail server with out a password. This can be changed in the configuration of both postfix and sendmail.<br /> <br /> One way to change this is to prevent users to from logging into the email server at all by stopping them haveing a login shell in the /etc/passwd file. A user can set up an email manager connect to the email server.<br /> <br /> == Authentication ==<br /> <br /> Access to the server is limited to to configured users, which is authenticated using the SASL. Both Postfix and Sendmail configure the autentication with a line in their main config file:<br /> <br /> &lt;syntaxhighlight&gt;<br /> pwcheck_method=saslauthd<br /> &lt;/syntaxhighlight&gt;<br /> <br /> SASL&#039;s config file then itself defines the authentication method is /etc/sysconfig/saslauthd:<br /> <br /> &lt;syntaxhighlight&gt;<br /> MECH=pam<br /> &lt;/syntaxhighlight&gt;<br /> <br /> <br /> == Mail Logging ==<br /> <br /> Messages relating to the Mail server can be found in the /var/log/messges file. This will include messges relating to restarts, user connections and messgaes.<br /> <br /> <br /> == Common Security Issues ==<br /> <br /> The default port for email servers in port 25. This port must be open in the firewall to allow access.</div>

Michael