21. Protecting E-Mail Services.pdf
(
215 KB
)
Pobierz
Protecting E-Mail
Services
Security Fundamentals
Instructor: Don Jones
Protecting E-Mail Services
Security Fundamentals
In This Lesson:
Spam
Relaying
Protecting E-Mail Services
Security Fundamentals
Spam
•
Spam
is unwanted e-mail and it is usually prevented by a
spam filter
.
•
Generally, you adjust your DNS settings so that incoming e-mail
goes to the spam filter first and then to your e-mail server(s).
•
Many e-mail server software includes spam filtering capabilities.
•
Sender Policy Framework (SPF)
is a tool for preventing
spam. It allows an organization to, via its public DNS records,
identify the servers that are authorized to send its email. Spam
filters can utilize this to discard e-mail that purports to be from
an organization, but based on that organization’s SPF isn’t.
•
Blacklists
list known spam-sending servers so that spam filters
can block e-mail originating from them.
Protecting E-Mail Services
Security Fundamentals
SPF
Only accept e-mail from my
domain if it is sent by one of
these servers.
These may not be in my
domain, but they’re authorized
to send on my behalf.
Protecting E-Mail Services
Security Fundamentals
Relaying
•
Many organizations rely on
relaying
, which is when one e-mail
server hands off its outbound e-mail to another for actual
sending.
•
Relaying helps distribute the workload associated with e-mail.
•
An
open relay
is one which will accept e-mail from anyone,
and then route it to its destination – an obvious security
vulnerability!
–
It will look like you’re sending the spam
–
Can result in your e-mail servers being placed on spam
blacklists
Protecting E-Mail Services
Security Fundamentals
Stopping Open Relays
•
A simple fix is to configure mail (SMTP) servers to only accept
relay mail from:
–
A list of known IP addresses
–
Authenticated users or services
–
Other “known and approved” sources
•
By blocking other mail sources, you stop your server from being
an open relay.
•
Let’s see how this is often configured…
Protecting E-Mail Services
Security Fundamentals
What We Covered
Spam
Relaying
Plik z chomika:
morek3333
Inne pliki z tego folderu:
01. Getting Started with Security Fundamentals.pdf
(242 KB)
03. Physical Security as the First Line of Defense.pdf
(201 KB)
02. Introducing Security.pdf
(209 KB)
05. Authentication Basics.pdf
(281 KB)
07. Using Encryption to Protect Data.pdf
(233 KB)
Inne foldery tego chomika:
MP3
Zgłoś jeśli
naruszono regulamin