BCS-E 1 Posted September 15, 2015 Posted September 15, 2015 Hello, We recently installed ESET Mail Security for linux on a Ubuntu bases Zarafa mail server with Postfix. The configuration of postfix is as follows: myhostname = serveralias_maps = hash:/etc/aliasesalias_database = hash:/etc/aliasesmyorigin = /etc/mailnamemydestination = localhostrelayhost = smtp.provider.somethingmynetworks = 127.0.0.0/8 [::ffff:127.0.0.0]/104 [::1]/128mailbox_size_limit = 0message_size_limit = 25600000virtual_mailbox_domains = domain_1 domain_2virtual_mailbox_maps = ldap:/etc/postfix/users.cfvirtual_alias_maps = ldap:/etc/postfix/aliases.cfvirtual_transport = tothemailserverrecipient_delimiter = +inet_interfaces = allinet_protocols = ipv4 Mail delivered from outside is passed on to Postfix. If destination is not domain_1 or domain_2 a relaying denied message is generated. Otherwise mail is forwarded to the mailserver Localhost is secure. Only the Zarafa mail server delivers mail to Postfix. Zarafa has only authenticated access. We then followed the manual on the ESET site "ESET Mail Security & Zarafa 7 infrastucture". Unfortunatelly we followed it to blindly. Smooth installation en configuration. Postfix to port 2525 ESET receiving on 25 and forwarding to 2525. It was rather quickly up and running and we were quite happy with the results. Until several days later we found out we had created an open relay. By installing ESET MS in front the postfix server all mail delivered to postfix is from localhost and as such secure. > 99,9% of all incoming mail was nicely processed by ESET MS assigned a SPAM label and forwarded by postfix to the provider smarthost !!! In my opinion ESET MS should block non domain oriented mail with a relaying denied message. However ESET is turning to HQ for support and in the meantime we disabled ESET MS. What is the correct way to install ESET Mail Security for Linux ..... Thanks for reading.
Recommended Posts