Re: Mailserver HDD organization

To: Volker Tanger <volker.tanger@wyae.de>
Cc: "debian-security @ lists. debian. org" <debian-security@lists.debian.org>
Subject: Re: Mailserver HDD organization
From: kuepper@in-secure.net
Date: Sat, 19 Jan 2002 13:04:00 +0100
Message-id: <[🔎] 20020119120400.GA10625@in-secure.net>
In-reply-to: <[🔎] 20020117231549.A3166@wyae.de>
References: <[🔎] 1011247597.410.7.camel@eimbox> <[🔎] 20020117231549.A3166@wyae.de>

hi all,

i have one question. I am going to start a security companie. I know, every person must choose its own mailserver
software. I have tryed out qmail, exim and a little bit postfix. Qmail seams
to be very secure and very fast. The configuration i think is to difficult
vor every System. Now my choice is exim. Exim works fine and the
configuration is simple. Now my question:

why schould i not use exim for my customers? 

Is it insecure? (i have read the mailinglists and there is nothing i have heard about)

das exim not handle a big mail site like 1000 users?

thx for your help.

thomas

On Thu, Jan 17, 2002 at 11:15:49PM +0100, Volker Tanger wrote:
> Greetings!
> 
> On Thu, Jan 17, 2002 at 07:06:37AM +0100, eim wrote:
> > 
> > I was thinking about a partition for /, one for boot, one for
> > /var/spool/mail and some other important system parts.
> 
> As you want to use exim and mailing list, you will want to have a
> partition for /var or /var/spool instead of /var/spool/mail as the
> exim outgoing queue is at /var/spool/exim. OTOH the logs are at
> /var/logs - so in short form
> 
> /var/spool/mail
> 	- only the user mailboxes
> 	
> /var/spool
> 	- user mailboxes  		/var/spool/mail
> 	- exim outgoing queue		/var/spool/exim
> 	
> /var
> 	- user mailboxes  		/var/spool/mail
> 	- exim outgoing queue		/var/spool/exim
> 	- exim logfiles			/var/log/exim
> 
> Thus I'd recommend to use a separate partition for the complete /var
> tree. So I usually partition for mailservers and similar
> 
> 	/dev/sda1	(swap)		1 GB
> 	/dev/sda2	/		2 GB
> 	/dev/sda3	/var		15 GB (i.e. all remaining)
> and maybe	
> 	/dev/sda4	/tmp		512 MB
> 	
> 	
> > Has anyone real-life examples of running mailservers,
> > maybe some HDD organization infos, MTA infos and other
> > importante related know-how to run a secure and stable
> > mailserver on my network.
> 
> Install on on a clean, minimized system. Just base (including exim),
> ssh (for admin) and maybe pop or imap. Webserver only for webmail.
> 
> No workstation tools or other playthings. Especially no user working
> on that server (no local login), no fileservices (neither NFS nor
> SAMBA), no FTP (uploads). Concentrate on the function - here: mail.
> 
> Keep an eye on safe configuration. Especially make damn sure that you
> don't end up as open relay (i.e. properly configured anti-spoofing).
> If you want filtering, look at the exim contrib directory, there for a
> file called system_filter.exim
> 
> Have fun!
> 	Volker
> 
> -- 
> 
> Volker Tanger	volker.tanger@wyae.de
> -===================================-
> Research & Development Division, WYAE
> 
> 
> -- 
> To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
> 

-- 
in.secure

Thomas Kuepper
kuepper@in-secure.net
www.in-secure.net

Internet & Network Security OHG

Reply to:

Follow-Ups:
- Re: Mailserver HDD organization
  - From: Thomas Thurman <tjat2@thurman.org.uk>
- Re: Mailserver HDD organization
  - From: Hans-Joachim Picht <hans@picht.org>

References:
- Mailserver HDD organization
  - From: eim <eim@eimbox.org>
- Re: Mailserver HDD organization
  - From: Volker Tanger <volker.tanger@wyae.de>

Prev by Date: Re: enforcing strong passwords
Next by Date: Re: Mailserver HDD organization
Previous by thread: Re: Mailserver HDD organization
Next by thread: Re: Mailserver HDD organization
Index(es):
- Date
- Thread