{ "created": "2015-12-20T19:56:34Z", "hierarchy": [ { "name": "ROOT", "type": "folder", "uri": "/ROOT" }, { "name": "Mailserver Setup", "type": "article", "uri": "Mailserver_Setup" } ], "html": "\n\n \n \n \n \n \n \n \n \n \n \n \n Mailserver Setup – Nikhil's Personal Wiki\n \n \n \n \n \n
\n
\n \n
\n
\n \n \n\n

Mailserver Setup\n \n

\n

Set up with Postfix, Postgrey,
\nDovecot, Cyrus SASL, ClamAV,
\nSpamAssassin,
\nAmavisd-new, and
\nFail2Ban on CentOS 6.4.

\n

Here’s a great guide
\n(cached).

\n

Billy Gorbachev’s options:

\n\n

Several of these changes can be made (SPF record, DROP, GnuPG) without
\nmodifying your existing setup.

\n\n\n
\n \n
\n \n \n \n \n \n\n", "id": "dfba24e8-9924-500a-afec-38fbfbe65677", "modified": "2023-05-03T20:33:13Z", "revisions": [ { "authorEmail": "mail@nikhil.io", "authorName": "Nikhil Anand", "date": "2023-05-03T20:33:13Z", "id": "13fd9aa2c17070823012a12dd946d050e3ed6bf3", "shortId": "13fd9aa2", "subject": "Initial commit\n", "content": "Set up with [Postfix](Postfix \"wikilink\"), Postgrey,\n[Dovecot](Dovecot \"wikilink\"), Cyrus SASL, [ClamAV](ClamAV \"wikilink\"),\n[SpamAssassin](SpamAssassin \"wikilink\"),\n[Amavisd-new](Amavisd-new \"wikilink\"), and\n[Fail2Ban](Fail2Ban_for_Dovecot \"wikilink\") on CentOS 6.4.\n\nHere's [a great guide](http://www.shisaa.jp/postset/mailserver-1.html)\n([cached](:File:Shisaa_-_Mailserver.pdf \"wikilink\")).\n\n### Billy Gorbachev's options:\n\n- OpenBSD. Eliminates need for fail2ban, since pf has this\n functionality built in.\n- qmail, not Postfix.\n- OpenBSD spamd, not Postgrey. spamd hurts spammers more, and hurts\n legit senders less. logs are hilarious, e.g. 178.33.129.117:\n disconnected after 3995 seconds. lists: spamd-greytrap\n- Replace spamassassin with Spamhaus hooks in qmail (tcpserver).\n- qmail-pop3d, not Dovecot. Dovecot has a poor security track record.\n Download mail over (pop3 over CurveCP), using fetchmail + CurveCP\n command-line tools. Store locally in Maildir, backup\n as necessary/desired.\n- drop ClamAV and Amavisd. Run FreeBSD or OpenBSD on your desktop.\n- Add GnuPG to your local mail client.\n- Add Spamhaus DROP and eDROP to network edge pf tables\n \n- Add a TXT SPF record for your domain, including your servers,\n followed by \"-all\"\n\nSeveral of these changes can be made (SPF record, DROP, GnuPG) without\nmodifying your existing setup.\n" }, { "authorEmail": "mail@nikhil.io", "authorName": "Nikhil Anand", "date": "2015-12-27T07:27:56Z", "id": "5a5b1a32f41081d062ab86f8869a961bcad79668", "shortId": "5a5b1a32", "subject": "Fix Markdown conversion\n\nSaw half a season of The Office\n", "content": "Set up with [Postfix](Postfix \"wikilink\"), Postgrey,\n[Dovecot](Dovecot \"wikilink\"), Cyrus SASL, [ClamAV](ClamAV \"wikilink\"),\n[SpamAssassin](SpamAssassin \"wikilink\"),\n[Amavisd-new](Amavisd-new \"wikilink\"), and\n[Fail2Ban](Fail2Ban_for_Dovecot \"wikilink\") on CentOS 6.4.\n\nHere's [a great guide](http://www.shisaa.jp/postset/mailserver-1.html)\n([cached](:File:Shisaa_-_Mailserver.pdf \"wikilink\")).\n\n### Billy Gorbachev's options:\n\n- OpenBSD. Eliminates need for fail2ban, since pf has this\n functionality built in.\n- qmail, not Postfix.\n- OpenBSD spamd, not Postgrey. spamd hurts spammers more, and hurts\n legit senders less. logs are hilarious, e.g. 178.33.129.117:\n disconnected after 3995 seconds. lists: spamd-greytrap\n- Replace spamassassin with Spamhaus hooks in qmail (tcpserver).\n- qmail-pop3d, not Dovecot. Dovecot has a poor security track record.\n Download mail over (pop3 over CurveCP), using fetchmail + CurveCP\n command-line tools. Store locally in Maildir, backup\n as necessary/desired.\n- drop ClamAV and Amavisd. Run FreeBSD or OpenBSD on your desktop.\n- Add GnuPG to your local mail client.\n- Add Spamhaus DROP and eDROP to network edge pf tables\n \n- Add a TXT SPF record for your domain, including your servers,\n followed by \"-all\"\n\nSeveral of these changes can be made (SPF record, DROP, GnuPG) without\nmodifying your existing setup.\n" }, { "authorEmail": "mail@nikhil.io", "authorName": "Nikhil Anand", "date": "2015-12-21T02:30:47Z", "id": "3f2c54b1d767218fcb4855fbac306b015afaf551", "shortId": "3f2c54b1", "subject": "Incremental\n", "content": "Set up with [Postfix](Postfix \"wikilink\"), Postgrey,\n[Dovecot](Dovecot \"wikilink\"), Cyrus SASL, [ClamAV](ClamAV \"wikilink\"),\n[SpamAssassin](SpamAssassin \"wikilink\"),\n[Amavisd-new](Amavisd-new \"wikilink\"), and\n[Fail2Ban](Fail2Ban_for_Dovecot \"wikilink\") on CentOS 6.4.\n\nHere's [a great guide](http://www.shisaa.jp/postset/mailserver-1.html)\n([cached](:File:Shisaa_-_Mailserver.pdf \"wikilink\")).\n\n### Billy Gorbachev's options:\n\n- OpenBSD. Eliminates need for fail2ban, since pf has this\n functionality built in.\n\n\n\n- qmail, not Postfix.\n\n\n\n- OpenBSD spamd, not Postgrey. spamd hurts spammers more, and hurts\n legit senders less. logs are hilarious, e.g. 178.33.129.117:\n disconnected after 3995 seconds. lists: spamd-greytrap\n\n\n\n- Replace spamassassin with Spamhaus hooks in qmail (tcpserver).\n\n\n\n- qmail-pop3d, not Dovecot. Dovecot has a poor security track record.\n Download mail over (pop3 over CurveCP), using fetchmail + CurveCP\n command-line tools. Store locally in Maildir, backup\n as necessary/desired.\n\n\n\n- drop ClamAV and Amavisd. Run FreeBSD or OpenBSD on your desktop.\n\n\n\n- Add GnuPG to your local mail client.\n\n\n\n- Add Spamhaus DROP and eDROP to network edge pf tables\n \n\n\n\n- Add a TXT SPF record for your domain, including your servers,\n followed by \"-all\"\n\nSeveral of these changes can be made (SPF record, DROP, GnuPG) without\nmodifying your existing setup.\n\n\n\n" }, { "authorEmail": "mail@nikhil.io", "authorName": "Nikhil Anand", "date": "2015-12-20T19:56:34Z", "id": "8b8c390a9ba56f733a64063ae37486efdc9d5ec6", "shortId": "8b8c390a", "subject": "Mailserver Setup : v5", "content": "Set up with [Postfix](Postfix \"wikilink\"), Postgrey,\n[Dovecot](Dovecot \"wikilink\"), Cyrus SASL, [ClamAV](ClamAV \"wikilink\"),\n[SpamAssassin](SpamAssassin \"wikilink\"),\n[Amavisd-new](Amavisd-new \"wikilink\"), and\n[Fail2Ban](Fail2Ban_for_Dovecot \"wikilink\") on CentOS 6.4.\n\n### Billy Gorbachev's options:\n\n- OpenBSD. Eliminates need for fail2ban, since pf has this\n functionality built in.\n\n\n\n- qmail, not Postfix.\n\n\n\n- OpenBSD spamd, not Postgrey. spamd hurts spammers more, and hurts\n legit senders less. logs are hilarious, e.g. 178.33.129.117:\n disconnected after 3995 seconds. lists: spamd-greytrap\n\n\n\n- Replace spamassassin with Spamhaus hooks in qmail (tcpserver).\n\n\n\n- qmail-pop3d, not Dovecot. Dovecot has a poor security track record.\n Download mail over (pop3 over CurveCP), using fetchmail + CurveCP\n command-line tools. Store locally in Maildir, backup\n as necessary/desired.\n\n\n\n- drop ClamAV and Amavisd. Run FreeBSD or OpenBSD on your desktop.\n\n\n\n- Add GnuPG to your local mail client.\n\n\n\n- Add Spamhaus DROP and eDROP to network edge pf tables\n \n\n\n\n- Add a TXT SPF record for your domain, including your servers,\n followed by \"-all\"\n\nSeveral of these changes can be made (SPF record, DROP, GnuPG) without\nmodifying your existing setup.\n\n[Category: Nikhil's Notes](Category:_Nikhil's_Notes \"wikilink\")\n[Category: Installation Logs](Category:_Installation_Logs \"wikilink\")\n" }, { "authorEmail": "mail@nikhil.io", "authorName": "Nikhil Anand", "date": "2015-12-20T19:56:34Z", "id": "c3747e45ae04df80999c1c3b1190b0de0846ff8d", "shortId": "c3747e45", "subject": "Mailserver Setup : v4", "content": "Set up with [Postfix](Postfix \"wikilink\"), Postgrey,\n[Dovecot](Dovecot \"wikilink\"), Cyrus SASL, [ClamAV](ClamAV \"wikilink\"),\n[SpamAssassin](SpamAssassin \"wikilink\"),\n[Amavisd-new](Amavisd-new \"wikilink\"), and\n[Fail2Ban](Fail2Ban_for_Dovecot \"wikilink\") on CentOS 6.4.\n\n[Category: Nikhil's Notes](Category:_Nikhil's_Notes \"wikilink\")\n[Category: Installation Logs](Category:_Installation_Logs \"wikilink\")\n" }, { "authorEmail": "mail@nikhil.io", "authorName": "Nikhil Anand", "date": "2015-12-20T19:56:34Z", "id": "87586be2e19e65fb47451954851a8e3bbcef0321", "shortId": "87586be2", "subject": "Mailserver Setup : v3", "content": "Set up with [Postfix](Postfix \"wikilink\"), Postgrey,\n[Dovecot](Dovecot \"wikilink\"), Cyrus SASL, [ClamAV](ClamAV \"wikilink\"),\n[SpamAssassin](SpamAssassin \"wikilink\"), and\n[Fail2Ban](Fail2Ban_for_Dovecot \"wikilink\") on CentOS 6.4.\n\n[Category: Nikhil's Notes](Category:_Nikhil's_Notes \"wikilink\")\n[Category: Installation Logs](Category:_Installation_Logs \"wikilink\")\n" }, { "authorEmail": "mail@nikhil.io", "authorName": "Nikhil Anand", "date": "2015-12-20T19:56:34Z", "id": "2576d46b2ffeb6fcda5c091e74ebaa4541dfc649", "shortId": "2576d46b", "subject": "Mailserver Setup : v2", "content": "Set up with [Postfix](Postfix \"wikilink\"), Postgrey,\n[Dovecot](Dovecot \"wikilink\"), Cyrus SASL, [ClamAV](ClamAV \"wikilink\"),\nand [SpamAssassin](SpamAssassin \"wikilink\") on CentOS 6.4.\n\n[Category: Nikhil's Notes](Category:_Nikhil's_Notes \"wikilink\")\n[Category: Installation Logs](Category:_Installation_Logs \"wikilink\")\n" }, { "authorEmail": "mail@nikhil.io", "authorName": "Nikhil Anand", "date": "2015-12-20T19:56:34Z", "id": "26b38e3ca434e0e0213fe1beb62dd1c1b6eed699", "shortId": "26b38e3c", "subject": "Mailserver Setup : First Draft", "content": "Set up with [Postfix](Postfix \"wikilink\"),\n[Postgrey](Postgrey \"wikilink\"), [Dovecot](Dovecot \"wikilink\"), Cyrus\nSASL, [ClamAV](ClamAV \"wikilink\"), and\n[SpamAssassin](SpamAssassin \"wikilink\") on CentOS 6.4.\n\n[Category: Nikhil's Notes](Category:_Nikhil's_Notes \"wikilink\")\n[Category: Installation Logs](Category:_Installation_Logs \"wikilink\")\n" }, { "authorEmail": "mail@nikhil.io", "authorName": "Nikhil Anand", "date": "2015-12-20T19:56:34Z", "id": "9119c52c9f121cd749807b2982b071c136fbacc2", "shortId": "9119c52c", "subject": "Mailserver Setup : v6", "content": "Set up with [Postfix](Postfix \"wikilink\"), Postgrey,\n[Dovecot](Dovecot \"wikilink\"), Cyrus SASL, [ClamAV](ClamAV \"wikilink\"),\n[SpamAssassin](SpamAssassin \"wikilink\"),\n[Amavisd-new](Amavisd-new \"wikilink\"), and\n[Fail2Ban](Fail2Ban_for_Dovecot \"wikilink\") on CentOS 6.4.\n\nHere's [a great guide](http://www.shisaa.jp/postset/mailserver-1.html)\n([cached](:File:Shisaa_-_Mailserver.pdf \"wikilink\")).\n\n### Billy Gorbachev's options:\n\n- OpenBSD. Eliminates need for fail2ban, since pf has this\n functionality built in.\n\n\n\n- qmail, not Postfix.\n\n\n\n- OpenBSD spamd, not Postgrey. spamd hurts spammers more, and hurts\n legit senders less. logs are hilarious, e.g. 178.33.129.117:\n disconnected after 3995 seconds. lists: spamd-greytrap\n\n\n\n- Replace spamassassin with Spamhaus hooks in qmail (tcpserver).\n\n\n\n- qmail-pop3d, not Dovecot. Dovecot has a poor security track record.\n Download mail over (pop3 over CurveCP), using fetchmail + CurveCP\n command-line tools. Store locally in Maildir, backup\n as necessary/desired.\n\n\n\n- drop ClamAV and Amavisd. Run FreeBSD or OpenBSD on your desktop.\n\n\n\n- Add GnuPG to your local mail client.\n\n\n\n- Add Spamhaus DROP and eDROP to network edge pf tables\n \n\n\n\n- Add a TXT SPF record for your domain, including your servers,\n followed by \"-all\"\n\nSeveral of these changes can be made (SPF record, DROP, GnuPG) without\nmodifying your existing setup.\n\n[Category: Nikhil's Notes](Category:_Nikhil's_Notes \"wikilink\")\n[Category: Installation Logs](Category:_Installation_Logs \"wikilink\")\n" } ], "sizeInBytes": 1422, "source": "Set up with [Postfix](Postfix \"wikilink\"), Postgrey,\n[Dovecot](Dovecot \"wikilink\"), Cyrus SASL, [ClamAV](ClamAV \"wikilink\"),\n[SpamAssassin](SpamAssassin \"wikilink\"),\n[Amavisd-new](Amavisd-new \"wikilink\"), and\n[Fail2Ban](Fail2Ban_for_Dovecot \"wikilink\") on CentOS 6.4.\n\nHere's [a great guide](http://www.shisaa.jp/postset/mailserver-1.html)\n([cached](:File:Shisaa_-_Mailserver.pdf \"wikilink\")).\n\n### Billy Gorbachev's options:\n\n- OpenBSD. Eliminates need for fail2ban, since pf has this\n functionality built in.\n- qmail, not Postfix.\n- OpenBSD spamd, not Postgrey. spamd hurts spammers more, and hurts\n legit senders less. logs are hilarious, e.g. 178.33.129.117:\n disconnected after 3995 seconds. lists: spamd-greytrap\n- Replace spamassassin with Spamhaus hooks in qmail (tcpserver).\n- qmail-pop3d, not Dovecot. Dovecot has a poor security track record.\n Download mail over (pop3 over CurveCP), using fetchmail + CurveCP\n command-line tools. Store locally in Maildir, backup\n as necessary/desired.\n- drop ClamAV and Amavisd. Run FreeBSD or OpenBSD on your desktop.\n- Add GnuPG to your local mail client.\n- Add Spamhaus DROP and eDROP to network edge pf tables\n \n- Add a TXT SPF record for your domain, including your servers,\n followed by \"-all\"\n\nSeveral of these changes can be made (SPF record, DROP, GnuPG) without\nmodifying your existing setup.\n", "title": "Mailserver Setup", "untracked": false, "uri": "/Mailserver_Setup", "relativePath": "Mailserver Setup.md" }