Go to page of
Similar user manuals
A good user manual
The rules should oblige the seller to give the purchaser an operating instrucion of Apple 10.6, along with an item. The lack of an instruction or false information given to customer shall constitute grounds to apply for a complaint because of nonconformity of goods with the contract. In accordance with the law, a customer can receive an instruction in non-paper form; lately graphic and electronic forms of the manuals, as well as instructional videos have been majorly used. A necessary precondition for this is the unmistakable, legible character of an instruction.
What is an instruction?
The term originates from the Latin word „instructio”, which means organizing. Therefore, in an instruction of Apple 10.6 one could find a process description. An instruction's purpose is to teach, to ease the start-up and an item's use or performance of certain activities. An instruction is a compilation of information about an item/a service, it is a clue.
Unfortunately, only a few customers devote their time to read an instruction of Apple 10.6. A good user manual introduces us to a number of additional functionalities of the purchased item, and also helps us to avoid the formation of most of the defects.
What should a perfect user manual contain?
First and foremost, an user manual of Apple 10.6 should contain:
- informations concerning technical data of Apple 10.6
- name of the manufacturer and a year of construction of the Apple 10.6 item
- rules of operation, control and maintenance of the Apple 10.6 item
- safety signs and mark certificates which confirm compatibility with appropriate standards
Why don't we read the manuals?
Usually it results from the lack of time and certainty about functionalities of purchased items. Unfortunately, networking and start-up of Apple 10.6 alone are not enough. An instruction contains a number of clues concerning respective functionalities, safety rules, maintenance methods (what means should be used), eventual defects of Apple 10.6, and methods of problem resolution. Eventually, when one still can't find the answer to his problems, he will be directed to the Apple service. Lately animated manuals and instructional videos are quite popular among customers. These kinds of user manuals are effective; they assure that a customer will familiarize himself with the whole material, and won't skip complicated, technical information of Apple 10.6.
Why one should read the manuals?
It is mostly in the manuals where we will find the details concerning construction and possibility of the Apple 10.6 item, and its use of respective accessory, as well as information concerning all the functions and facilities.
After a successful purchase of an item one should find a moment and get to know with every part of an instruction. Currently the manuals are carefully prearranged and translated, so they could be fully understood by its users. The manuals will serve as an informational aid.
Table of contents for the manual
-
Page 1
Mac O S X S e r v er Mail Ser vice Administr ation V ersi on 1 0. 6 Sno w Le opar d[...]
-
Page 2
Apple Inc. K © 2009 Apple Inc. All rights reserved. Under the copyright laws, this manual may not be copied, in whole or in part, without the written consen t of Apple. The Apple logo is a trademark of Apple Inc., registered in the U.S. and other countries. Use of the “keyboard” Apple logo (Option-Shift-K) for commercial purposes without the p[...]
-
Page 3
7 Prefac e: A bout T his Guide 7 What’ s in T his G uide 8 Using Onscreen Help 9 Document Road Map 1 0 Viewing PDF Guides Onscreen 1 0 Printing PDF Guide s 1 1 Getting Documentation Updates 1 1 Getting Additional Information 1 2 Chapter 1: Understanding Mail Ser vice 1 2 Mail Ser vice Ar chitec tur e 1 3 Mail T ransfer Agent 14 Mail Screening 1 5[...]
-
Page 4
4 Conten ts 29 Conguring Incoming Mail Servic e 3 1 Restricting SMTP Relay 3 2 Restricted SMTP Relay and SMTP Authentication In teraction 3 2 Rejecting SMTP Connections from Specic Ser ver s 3 3 Rejecting Mail from Black listed Senders 3 3 Filt er ing SMTP C onnections 34 Limiting Junk Mail and V iruse s 34 Connection Contr ol 35 Mail Ser vic[...]
-
Page 5
Conten ts 5 7 1 Accessing Server Certicates from the Command Lin e 72 Creating a P assword F ile from the Command Lin e 7 3 A Mail Ser vice V irtual Host 7 3 Enabling Vir tual Hosting 7 4 Adding or Removing V irtual Hosts 7 4 Associating Users to the V irtual Host 77 Creating Additional Mail A ddresses for Users 7 8 S etting Up F or w arding Mai[...]
-
Page 6
6 Conten ts 94 Appendix A: Command-Line P arameters for the serveradmin T ool and Default Mail Ser vice Settings 1 28 Appendix B: Sample Sieve Scripts 1 3 1 Index[...]
-
Page 7
7 This guide pro vides a star ting point for administering Mail Ser vice using its advanced administr ation tools. I t contains information about c ongur ing Mail Ser vice using Ser ver Admin. Mail Ser vice Administr ation might not be the only guide you need when administering Mail Ser vice, but it gives you the basics bey ond initial Mac OS X [...]
-
Page 8
8 Preface About This Guide Using Onscreen Help Y ou can get task instructions onscreen in Help Viewer while you ’ re managing Mac OS X Ser ver v1 0.6. Y ou can view help on a ser ver or an administrator computer . (An administrator comput er is a M ac OS X computer with Mac OS X Ser ver v1 0.6 administration software installed on it.) T o get the[...]
-
Page 9
Preface About This Guide 9 Document Road Map Mac OS X Ser ver v1 0.6 has a suite of guides which can co ver management of individual ser vices. Each ser vice may be dependent on other services for maximum utility . The road map below shows some relat ed documentation that you may need to fully congure your de sired ser vice to your specicatio[...]
-
Page 10
10 Prefac e About This Guide Viewing PDF Guides Onscreen While reading the PDF version of a guide onscr een: Show bookmarks to see the guide’ s outline, and click a book mark to jump to the  corresponding section. Search for a wor d or phrase to see a list of places where it appears in the document.  Click a listed place to see the page wher [...]
-
Page 11
Preface About This Guide 11 Getting Documentation Updates P eriodically , Apple posts revised help pages and new editions of guides. S ome revised help pages update the lat est editions of the guides. T o view new onscreen help topics for a server application, mak e sure your server or  administrator computer is c onnec ted to the Internet and cl[...]
-
Page 12
12 Mail ser vice in Mac OS X Ser ver is comprised of man y di erent componen ts that work together to pro vide incoming and outgoing Mail ser vice , mail ltering , and mailing lists. This chapter begins with a look at the standard pr otocols used for sending and receiving mail. Then it e xplains how Mail ser vice works, discusses mailing list[...]
-
Page 13
Chapter 1 Understanding Mail Service 13 The follo wing image gives an overview of how the components of Mac OS X Ser ver Mail ser vice interact: Mac OS X Ser ver External Mail T ransfer Agent (MT A) Native Mail User Agent (MU A) Web B rowser Optional Mail Delivery Agent Mail Delivery Agent (Squirrel Mail) Mail T ransfer Agent (MT A) SMTP Server (Po[...]
-
Page 14
Nearly every Postx application can run with x ed low privileges and no ability to  change ID , run with root privileges, or run as any other user . P ostx uses the conguration les main.cf and master .cf in /etc/postx/. When S er ver Admin modies P ostx settings, it over writes the main.cf le. If you make a man ual cha n[...]
-
Page 15
Chapter 1 Understanding Mail Service 15 Where Mail Is Stor ed Mail is stored in an outgoing queue awaiting tr ansfer to a remote server or in a local mail store accessible b y local mail users. Outgoing Mail Location By default, outgoing mail messages are st ored in the following spool directory on the star tup disk in /var/spool/postx/. This lo[...]
-
Page 16
Local Delivery Agent Mail is transferred from incoming mail st orage to the mail recipient’ s inbox by a local delivery agent (LDA). T he LDA handles local deliver y , mak ing mail accessible by the user ’ s mail application. T wo protocols are a vailable from the Mac OS X Ser ver LDA: POP and IMAP . Mac OS X Ser ver uses Dov ecot to provid e P[...]
-
Page 17
Chapter 1 Understanding Mail Service 17 The IMAP user’ s computer can ask the server for message headers, ask for the bodies of specied messages , or sear ch for messages that meet certain criteria. T hese messages are downloaded as the user opens them. IMAP connections are persistent and remain open, maintaining load on the ser ver and possib[...]
-
Page 18
Using Mailing Lists with Mail Ser vice Mac OS X Ser ver provides two types of mailing lists: A Mailman-based list where a single mail message is distributed to recipien ts who  have subscribed to the list A wiki-based list that allows you to send a single message that is copied t o each  member of a Mac OS X Ser ver wiki group Mailman-Based Mai[...]
-
Page 19
Chapter 1 Understanding Mail Service 19 Using Network Ser vices with Mail Ser vice Mail ser vice makes use of network ser vices to ensure deliv er y of mail. Bef ore sending mail, your Mail ser vice will probably have a DNS service determine the Internet Prot ocol (IP) address of the destination. The DNS service is necessar y because people typical[...]
-
Page 20
20 This chapter explains the basic c onguration of Mail ser vice. Y ou learn about tools used to manage Mail ser vice and conguration steps to manually congure Mail service or make changes af ter using the Ser ver Setup Assistant. Managing Mail Ser vice This sections provides basic steps t o set up M ail ser vice on Mac OS X Ser ver and ex[...]
-
Page 21
Chapter 2 Mail Service Setup 21 Using Mail Ser vice T ools Mac OS X Ser ver provides two primary applications and one primar y command-line tool to help you set up and manage Mail service: Â Ser ver Admin: Use t o star t, stop, congure , main tain, and monitor Mail service when you install Mac OS X Ser ver . Â W orkgroup Manager: Use to create[...]
-
Page 22
How User A ccount Settings A ect M ail Ser vice In addition to setting up Mail ser vice as described in this chapter , you can also congure individual mail settings for an yone who has a user account on your server . F or each user , you need to: Enable mail usage. Â Enter the DNS name or IP addre ss of your mail ser ver . Â Select the prot[...]
-
Page 23
Chapter 2 Mail Service Setup 23 T o star t the mail conguration assistan t: 1 In Ser ver Admin, selec t a computer in the Ser vers list, then select Mail. If Mail is not listed beneath the ser ver you selected , y ou must star t M ail ser vice. Click the + button at the bottom of the Servers lists, then select Add Ser vice from the pop-up list. [...]
-
Page 24
6 Congure additional settings f or Mail ser vice. Additional settings that y ou can change a ec t how Mail ser vice stores mail, limits junk mail, and handles undeliverable mail. See the following sections for instructions: “ Â W ork ing with Mail S er vice Data Storage ” on page 79 “ Â Limiting Junk Mail and V iruses ” on page 34 ?[...]
-
Page 25
Chapter 2 Mail Service Setup 25 Administ er ing Mail Ser vice Y ou must turn on Mail ser vice administration before you can use Server Admin to congure or enable it. This allo ws S er ver Admin t o star t, st op, and change settings for Mail service. T o enable Mail Ser vice for administration: 1 Open Ser ver Admin. 2 Select a ser ver , click th[...]
-
Page 26
Viewing Mail Ser vice Settings from the Command Line T o view Mail ser vice conguration settings: $ sudo serveradmin settings mail T o view a specic setting: $ sudo serveradmin settings mail: setting T o view a group of settings: Y ou can view a group of settings that have part of their names in common by ent er ing as much of the name as you[...]
-
Page 27
Chapter 2 Mail Service Setup 27 Enabling SMTP Acce ss SMTP is used for transf er ring mail between Mail ser vice and sending mail from users’ mail clients. T he SMTP M ail ser vice stores out going mail in a queue until it has found the mail exchange server at the mail’ s destination. Then it transfers the mail to the destination server for han[...]
-
Page 28
Relaying SMTP Mail Through Another Server Rather than delivering outgoing mail to its destinations , y our SMTP Mail ser vice can relay outgoing mail t o another ser ver . Normally , when an SMTP server receives a me ssage addressed to a remote recipient , it attempts to send that me ssage to that ser ver or the ser ver specied in the MX record [...]
-
Page 29
Chapter 2 Mail Service Setup 29 Saving Mail Messages for Monit oring and Archival Purposes Y ou can congure Mail ser vice to send a blind carbon copy (Bcc) of each incoming or outgoing message to a user or group . Y ou might want to do this t o monitor or archive message s. S enders and receivers of mail don ’t know that copies of their mail a[...]
-
Page 30
T o enable IMAP access: 1 In Ser ver Admin, selec t a computer in the Ser vers list, then select Mail. 2 Click Settings. 3 Select the G eneral tab . 4 Click Enable IMAP . 5 Enter the number of concurren t connec tions you want to allo w, then click Save. 6 Click Save . 7 Continue and c ongure securit y for IMAP authentication and tr anspor t. Se[...]
-
Page 31
Chapter 2 Mail Service Setup 31 Mail accepted for local delivery is queued until POP or IMAP services are enabled, delivery to /var/mail/ is enabled , or the message expir es and a Non Deliver y Receipt (NDR) is sent to the sender (after 7 2 hours by default). If delivery to /var/mail/ is enabled, users can still access mail using UNIX mail tools s[...]
-
Page 32
Restricted SMTP Relay and SMTP Authen tication Interaction The follo wing table describes the results of using restricted SMTP relay and SMTP authentication (see “SMTP Authentication ” on page 64 ) in various combinations. SMTP requires a uthentication Restricted SMTP relay Result On O All mail servers must authenticate bef ore Mail service [...]
-
Page 33
Chapter 2 Mail Service Setup 33 When adding to the list, S er ver Admin accepts a v ariet y of notations. Y ou can: Enter a single IP addre ss or the net work/netmask pattern, such as 1 92. 1 68.40.0/2 1 . Â Enter a host name , such as mail.example .com. Â Enter an Int er net domain name, such as example.com. Â Rejecting Mail from Black listed S[...]
-
Page 34
3 If you want, log the pack ets to monitor the SMTP abuse. 4 Add more lters f or the SMTP por t to allow or deny access fr om other IP addresses or address ranges . F or additional information about Firewall service, see Net work Ser vices Administr ation. Limiting Junk Mail and Viruses Y ou can congure Mail ser vice to decrease the volume of[...]
-
Page 35
Chapter 2 Mail Service Setup 35 Mail Ser vice Filt ering Mail ser vice uses SpamAssassin (spamassassin.apache .org ) to lter spam, or junk mail, from incoming mail messages . Mail service uses ClamA V (www .clamav .net) to detect viruses in mail messages . Both tools ar e managed within the Filters pane of Mail Settings in Ser ver Admin. Additio[...]
-
Page 36
6 Choose from the follo wing to deal with junk mail messages. Â Bounced: Sends the message back to the sender . Y ou can optionally send a mail notication of the bounce to a mail accoun t, pr obably the postmaster . Â Deleted: Deletes the message without delivery . Y ou can optionally send a mail notication of the bounce to a mail accoun t,[...]
-
Page 37
Chapter 2 Mail Service Setup 37 T raining the junk mail lter without user int erac tion: Y ou can also train the junk mail lter by giving it known junk and good mail messages. Accurat e training requires a lar ge sample, so a minimum of 200 messages of each type is advised. 1 Choose a mailbox of 2 00 messages made of only junk mail. 2 Use T e[...]
-
Page 38
Enabling Virus Screening Before you can benet fr om mail screening, it must be enabled. While enabling screening , y ou congure screening parameters. Mac OS X Ser ver uses ClamA V (from www .clamav .net) to scan mail messages for viruses. I f a suspected virus is found , you can deal with it several ways , de scr ibed below . The virus den[...]
-
Page 39
Chapter 2 Mail Service Setup 39 Ser ver-Side Mail Rules Mac OS X Ser ver suppor ts Sieve scripts to process server-side mail rules. Sieve is an Internet standard mail ltering language f or ser ver-side ltering. Sieve scripts interact with incoming mail before nal deliv er y . Sieve acts much like rules in mail programs to sort or process m[...]
-
Page 40
Managing Mail Quotas Mail quotas dene how much disk space a user’ s mail can use on the mail ser ver . Quotas are set on a per-user basis in the user ’ s record in W or kgroup Manager . Although you don ’t set a mail user ’ s quota in Ser ver Admin, you do manage quota enforcemen t and your ser ver ’ s response to quota violation. Mail[...]
-
Page 41
Chapter 2 Mail Service Setup 41 Viewing a User ’ s Quota Usage When a mail user is over quota, Ser ver Admin (in the Mail> Maintenance > Accoun ts pane) reports a percent free which is negative . This percent is proportional to the amount the user is ov er quota. F or exa mpl e, su ppo se a us er has a 2 MB qu ota and ha s r ece ive d 5 MB [...]
-
Page 42
Mailing Lists Use this section to determine how to congure and manage mailing lists with built-in mailing list functionalit y of Mac OS X Ser ver . Setting Up a Wiki-B ased Mailing List T o send mail messages to all members of a wiki group, you can enable ser ver group mailing lists. Each member of the wiki group receives a copy of me ssages sen[...]
-
Page 43
Chapter 2 Mail Service Setup 43 About Mailman Some of Mailman’ s main features include the follo wing (from www.list.or g/features.htm l ): W eb-based list administration for nearly all tasks, including list conguration, Â moderation (post approv als), and managemen t of user accounts. W eb-based subscribing and unsubscr ibing, and user con?[...]
-
Page 44
Setting Up a Mailman Mailing List This section describes the process of setting up a Mailman mailing list. T o do this, you enable the service, dene a list name, and add subscr ibers to the list. When you creat e a mailing list, y ou must specify a master password that giv es you control o ver all lists. Do not use an administrator ’ s or user[...]
-
Page 45
Chapter 2 Mail Service Setup 45 Creating a Mailing List Mailing lists distribute a single mail message to multiple recipients . A f ter you creat e a mailing list, mail sent to the list’ s address is sent to all subscribers. Mailing lists have list administrators who can change list membership and list fea tures. Lists can be self-subscribing, so[...]
-
Page 46
Setting a List’ s Maximum Message Length Y ou can set the maximum size message that the list accepts. Y ou can disallow large attachments by setting a small maximum siz e, or you can allow le collaboration by setting an unlimited message size . Y ou use Ser ver Admin to set the maximum message length. T o set a list ’ s maximum message lengt[...]
-
Page 47
Chapter 2 Mail Service Setup 47 Customizing the Mailing List Welc ome M essage When subscribers join a mailing list, by assignment or self-subscription, they receive an automat ed welcome message. The message explains where to nd the list archiv es and how to unsubscribe. Y ou can customize it by adding text, describing the list culture and rule[...]
-
Page 48
Enabling a Mailing List Moderator Y ou can create a moderated list where the posts must be appr oved by a list administrator befor e the post is sent. Y ou designate list moderators , who have limited administrative privileges . They can’ t change list options but they can approve or reject subscription requests and postings. When moderators ent [...]
-
Page 49
Chapter 2 Mail Service Setup 49 3 Select Bounce Processing in the C onguration Categories link section. 4 Select the bounce processing options you want. Each option section has a link to a help page that explains the option setting. 5 Click Submit Y our Changes. Designating a Mailing List as P rivate Y ou might not want to show some lists on the[...]
-
Page 50
If the subscribers are users on the mail ser ver , y ou can use the Users and Groups button to add a local groups to the list. 7 Choose from the follo wing subscr iber privileges: Â Users subscribed to list: This means the user will receive mail sent t o the list address. Â Users may post t o list: This means the list will accept mail from the us[...]
-
Page 51
Chapter 2 Mail Service Setup 51 Designating a List Administr ator When you set up a mailing list, you designate at least one user to administer it. This administrator has acc ess to the other list settings pages for all lists on the server . Y ou can designate more than one list administrat or and change any subscriber to or from being a list admin[...]
-
Page 52
Th is is not the u ser’ s log in pa sswo rd. The mast er l ist p assw ord w as s et wh en ma iling list s were enabled on the server . I t was mailed to list administrators de signated at that time. 3 Change list settings as desired . Designating a List Moderat or When you set up a list, you can designate another user to moderat e the list. T o d[...]
-
Page 53
Chapter 2 Mail Service Setup 53 Viewing Mailing List Archive s If the list administrator has enabled message archiving , you can access and search the archived message s. T o view a list’ s archives: 1 In a web browser , enter the URL of the list information page . This is usually server .domain.tld/ mailman/archives/ listname . 2 Select the year[...]
-
Page 54
4 Select the list to remove the subscriber from. 5 Select the subscriber from the User pane. T o selec t multiple subscribers, hold down the Shift or Command key . 6 Click the Remove (-) button under the Email A ddress pane. Changing Subscriber P osting Privileges Sometimes you might wan t an announce-only list, where recipients can ’t post messa[...]
-
Page 55
Chapter 2 Mail Service Setup 55 List Subscriber Options A subscriber can customize their mailing list subscriptions. Without being designat ed a list administrator or having user privilege s on the ser ver , the user has control of a number of aspects of his or her subscriptions. The follo wing sec tion gives instructions on common settings your us[...]
-
Page 56
Unsubscribing from a Mailing List Via Mail Unsubscribing from a mailing list via mail is similar to subscribing to a mailing list via mail. Depending on the list ’ s settings, you might need to conrm your subscription remov al or wait for moderator res ponse. T o unsubscribe via mail: 1 Open the mail program that sends from the addre ss that r[...]
-
Page 57
Chapter 2 Mail Service Setup 57 5 Enter a new passwor d in the indicated eld, and enter it again to c onr m it. T o change your password for all lists that y ou belong to on this ser ver , select Change Globally . 6 Click Change My P assword. Disabling List Mail Delivery Y ou can temporarily disable delivery of mailing list messages (for exam[...]
-
Page 58
Choosing MIME or Plain T ext Digests If you subscribe to a mailing list and receive dige sts (a single mail with all of a day ’ s postings in it), you can choose whether to receive them as a MIME dige st (a collec tion of individual posts) or as a plain text digest (one message with the text of all posts). T o change message types: 1 In a web bro[...]
-
Page 59
Chapter 2 Mail Service Setup 59 Setting Mail Ser vice Logging Options Mail ser vice logs can show the following lev els of repor ted detail:  Debug: All debugging information  Information: Connection transactions, delivery attempts, authentication attempts  Notice: Authentication failures  Critical: Errors that require prompt administration[...]
-
Page 60
Client-Specic C onguration for Mail Ser vice Client Acc ess to your Mail ser vice requires: Enabling users to access y our M ail ser vice. S ee “  Designating Authorized Mail Service Users” on page 62. Conguring and managing the tools they use to acce ss M ail ser vice. Some of these  topics are discussed below . Conguring Mail [...]
-
Page 61
Chapter 2 Mail Service Setup 61 Using Webmail W ebMail is a web-based mail user agent (MU A). It allows a web bro wser such as Apple ’ s Safari to compose, read, and forward mail like any other mail client. Mac OS X Ser ver ’ s W ebM ail functionalit y is provided by a software package called SquirrelMail at www .squirrelmail.org. W ebMail reli[...]
-
Page 62
62 Use this chapter t o tune M ail ser vice beyond a basic setup . This chapter discusses t opics beyond the basic conguration t o get M ail ser vice running. I t includes information about using Mail service vir tual hosting environments , more specic security tuning, information about managing the data store, and information about using the[...]
-
Page 63
Chapter 3 Mail Service Advanced Congur ation 63 Access via A CL Access via Workgr oup Manager Result O On User has mail access grant ed according to his or her user record settings in Workgroup Manager . This is the default. O O User has no mail access. On On User has mail access grant ed according to the IMAP or POP settings in the Gen[...]
-
Page 64
Some administrators nd it easier to designa te mail access using ACLs if they do all their other conguration using A CLs. They also migh t have mixed network environmen ts that necessitate using ACLs to assign mail acc ess. T o enable mail access using A CLs: 1 In Ser ver Admin, selec t the ser ver that has Mail ser vice running. 2 Select Acc[...]
-
Page 65
Chapter 3 Mail Service Advanced Congur ation 65 Enabling multiple methods allows a client to use an y of the enabled methods. If you want to requir e any of these authentication methods , enable only one method . T o allow secure SMTP authen tic ation: 1 In Ser ver Admin, selec t a computer in the Ser vers list, then select Mail. 2 Click Setting[...]
-
Page 66
Before enabling Kerberos a uthentication for incoming Mail ser vice, you must integrate Mac OS X with a Kerberos ser ver . If you ’ re using Mac OS X Ser ver for Kerberos authentication, this is already done for you. Enabling multiple methods allows a client to use an y of the enabled methods. If you want to requir e any of these authentication m[...]
-
Page 67
Chapter 3 Mail Service Advanced Congur ation 67 Securing Mail S er vice with SSL Secure Sockets Layer (SSL) connections ensure that the data sent betw een your mail ser ver and your users ’ mail clients is encrypted. This allows secure and condential transport of mail messages across a local network. SSL transport doesn ’t provide secure [...]
-
Page 68
Conguring SSL T ransport for SMTP Connections SSL transport enables mail transmitted over the netw or k to be securely encrypted. Y ou can choose Require, Use, or Don’t U se SSL for IMAP connections. Before using SSL connections, you must hav e a secur ity cer ticate for mail use. F or more information about certicates, see Certicates[...]
-
Page 69
Chapter 3 Mail Service Advanced Congur ation 69 Using an SSL C er tic ate from an External C er ticate Authority If you do not have a v alid cer ticate, you can acquire one from a certicate authority and add it to the System keychain: Generate a Certicate Signing Request (CSR) A CSR is a le that provides inf ormation needed to [...]
-
Page 70
8 Enter b , and then press Return. The follo wing output appears. ...Generating key pair... Please specify the algorithm with which your certificate will be signed. 5 RSA with MD5 s RSA with SHA1 Select signature algorithm by letter: 9 Enter s , and then press Return. The follo wing output appears. You have selected algorithm RSA with SHA1. OK (y/a[...]
-
Page 71
Chapter 3 Mail Service Advanced Congur ation 71 Importing an SSL Cer ticate into the K eychain from the Command Line Y ou can impor t your SSL certicate into the Keychain using Keychain A ccess or from the command line with certtool . T o impor t an SSL certicate using certtool : 1 Log in to the server as root. 2 Open the T erminal appl[...]
-
Page 72
T o expor t a cer ticate to OpenSSL: Â $ sudo certadmin export F or more information, see the certadmin man page. Y ou can also access the Syst em keychain locally from Keychain Acc ess. Creating a P assword F ile from the C ommand Line The password le c ontains the password you specied when y ou created the keychain. Mail ser vice uses t[...]
-
Page 73
Chapter 3 Mail Service Advanced Congur ation 73 A Mail Ser vice V ir tual Host Vir tual hosting is a method you can use to host more than one domain name on the same computer and IP address , with overlapping mail user names. F or example, a mail ser ver can receive mail transf er requests for two domains , mail. example1 .com and mail.example2.[...]
-
Page 74
Adding or Removing Vir tual Hosts Before you can enable virtual hosting, you must add a list of locally hosted vir tual domains to your mail server . V ir tual hosting must be enabled to add or remove virtual hosts. If vir tual hosting is not enabled, see “Enabling V ir tual Hosting” on page 73 . If yo u enable v ir tual hos t domains , all mai[...]
-
Page 75
Chapter 3 Mail Service Advanced Congur ation 75 T o associate a user to a virtual host using Mac OS X S erver–style aliases: 1 Add a Vir tual Host Name using the directions in “ Adding or Removing V ir tual Hosts ” on page 74 . 2 In Workgroup Manager , open the user account you want to w ork with, if it isn ’t open. T o open the account,[...]
-
Page 76
F or example, if your domain is example.com, you are running a vir tual host for “ ser ver .com,” and you want to hav e user bob get mail sent to “postmaster@server .com,” you should enter: postmaster@server.com bob This causes mail sen t to your mail ser ver for postmaster@server .com to be sent to user “bob.” M ail sent to postmaster@[...]
-
Page 77
Chapter 3 Mail Service Advanced Congur ation 77 Creating A dditional Mail Addresses f or Users Mail ser vice allows each user to hav e more than one mail address. These additional addresses are called aliase s. Ever y user has one mail address that’ s formed from the short name of the user account. In addition, you can dene more names for a[...]
-
Page 78
T o create a P ostx-style alias: 1 Create the le /etc/postx/aliase s, if none exists. 2 F or each alias, make a line in the le with the following format: alias:localaddress1,localaddress2,... F or example, for your domain example .com, if you want t o give user name bob”an alias of robert.fak euser you enter: robert.fakeuser: bob This[...]
-
Page 79
Chapter 3 Mail Service Advanced Congur ation 79 W ork ing with Mail Ser vice Data St orage Mail ser vice stores each message as a separ ate le in a mail folder for each user . This is the user’ s mailbox. Incoming mail is stored on the startup disk in the /var/spool/imap/dov ecot/mail/ folder . D ovecot mail stor age can also be split acros[...]
-
Page 80
When Mail ser vice starts for the rst time, it creates an empty mail store at the defa ult location. Y ou can ignore this or delete it after you specify an alternate mail stor age location and restart Mail ser vice. 2 In Ser ver Admin, selec t a computer in the Ser vers list, then select Mail. 3 Click Settings. 4 Click the Adv anced tab. 5 Click[...]
-
Page 81
Chapter 3 Mail Service Advanced Congur ation 81 6 T o change a location, click the Edit (/) button below the Additional Mail Store Locations bo x, edit the path t o the new location, and click OK. 7 T o remove a location, select the location to be deleted and click the Remove (-) button next to the Additional Mail Store L ocations box. 8 Click S[...]
-
Page 82
Setting Up Mail Ser ver Clustering with Xsan With Xsan, you can cluster multple mail servers that share the mail store. T his provides mission-critical redundancy and high per formance and allows you to easily maintain the pooled storage using Xsan tools and software. Each server also has a primar y SMTP spool le. If a ser ver goes oine, anot[...]
-
Page 83
83 Use this chapter t o monitor and maintain Mail ser vice. This chapter discusses how t o watch over Mail Ser vice and the mail store , including archiving , logging , and handling undeliverable mail. Star ting or Stopping Mail Ser vice Normally , Mail service star ts after you nish using the Ser ver Assistant, but you can use Ser ver Admin to [...]
-
Page 84
If the ser vice is running, click Stop Mail. Fr om the command line: Start and stop the Mail ser vice using the serveradmin command. T o star t the Mail ser vice: m sudo serveradmin start mail T o stop the Mail ser vice: m sudo serveradmin stop mail If you plan to turn o Mail ser vice for an extended period of time, notify users before you stop [...]
-
Page 85
Chapter 4 Monitoring and Maintaining Mail Service 85 Blocking Inbound Mail Connections Y ou can prevent Mail service from receiving inbound mail from external ser vers. Y ou might do this to isolate a problem or to pr event conicts with another Mail ser vice running on your network. Y ou might also do this to stop virus propagation or a spam rel[...]
-
Page 86
3 Find the line tha t reads “ admins:” 4 Edit the line to add the short name of the administrator account after the colon. 5 Save your change s. F or more information see the man page for imapd .conf. Monitoring Mail Ser vice Activity This section de scribes ho w to use Ser ver A dmin and the comm and line t o monito r Mail ser ver activity , l[...]
-
Page 87
Chapter 4 Monitoring and Maintaining Mail Service 87 T o view a Mail ser vice log: 1 In Ser ver Admin, selec t a computer in the Ser vers list, then select Mail. 2 Click the Logs button. 3 F rom the View pop-up menu, choose a log t ype. 4 Click Save . Fr om the command line: Y ou can use tail or another le-listing tool to view the conten ts of M[...]
-
Page 88
Viewing Mail Accoun ts Y ou can use Ser ver Admin to see a list of users who hav e used their mail accounts at least once. For each account , y ou see the user name, disk space quota, disk space used , and percentage of s pace available to the user . Mail accounts that hav e never been used aren ’t listed. T o view a list of mail accounts: 1 In S[...]
-
Page 89
Chapter 4 Monitoring and Maintaining Mail Service 89 Retrying Undelivered Outgoing Messages Sometimes the outgoing mail queue has undelivered me ssages that are properly addressed , but f or some reason the messages aren ’t sent (for e xample, if the destination server is down, or if the rewall is blocking the outgoing por t for SMTP). Y ou ca[...]
-
Page 90
The computer re sponds with the following output: mail:nbSamples = <samples> mail:v2Legend = "throughput" mail:samplesArray:_array_index:0:v n = <sample> mail:samplesArray:_array_index:0:t = <time> mail:samplesArray:_array_index:1:v n = <sample> mail:samplesArray:_array_index:1:t = <time> [...] mail:samplesAr[...]
-
Page 91
91 Use this chapter t o nd information about how to work with Mail ser vice when it is not per forming as expected . This chapter discusses situations wher e M ail ser vice is not per forming optimally . It also includes links to other resources f or more information and advanced conguration techniques f or the technologies and protocols unde[...]
-
Page 92
When a Disk Is F ull Mail ser vice becomes erratic if the disk storing your mail r eaches maximum capacit y . When your disk reache s full capacity , you’ll experience the follo wing: Â P ostx: If the operating system can still spawn the sm tpd process, P ostx tries to function and attempts to accept the message . The message is then rejec[...]
-
Page 93
Chapter 5 T roubleshooting Mail Service 93 Books F or general information about mail protocols and other technologies , see the se books: A good introduction to internet Mail service can be found in  Internet Messaging , by David Strom and Marshall T . Rose (Prentice Hall, 1 998). F or more information about MX records , see “DNS and Elec troni[...]
-
Page 94
94 The follo wing table provides the parameters for use with the serveradmin tool t o change settings for Mail service from the command line. It also gives the default value s af ter conguration with the Server Setup Assistant on a ser ver that is an Open Directory Master . Par ameter Default Value mail:mailman:default_email_host "example.c[...]
-
Page 95
Appendix A Command-Line P arameters for the serveradmin T ool and Default Mail Ser vice Settings 95 Par ameter Default Value mail:mailman:enable_mailman yes mail:imap:lmtp_over_quota_perm_ failure no mail:imap:srvtab "/etc/srvtab" mail:imap:imap_auth_cram_md5 yes mail:imap:imap_auth_clear no mail:imap:loginuseacl no mail:imap:popexpiretim[...]
-
Page 96
96 Appendix A Command-Line P arameters for the serveradmin T ool and Default Mail Ser vice Settings Par ameter Default Value mail:imap:sieve_proxyservers _empty_array mail:imap:lmtp_luser_relay_enabled no mail:imap:unixhierarchysep no mail:imap:partition-default "/var/spool/imap/dovecot/mail" mail:imap:imap_auth_gssapi yes mail:imap:allow[...]
-
Page 97
Appendix A Command-Line P arameters for the serveradmin T ool and Default Mail Ser vice Settings 97 Par ameter Default Value mail:imap:tls_lmtp_key_file "" mail:imap:servername "example.com" mail:imap:partitions _empty_array mail:imap:tls_imap_require_cert no mail:imap:sieve_admins _empty_array mail:imap:mupdate_retry_delay 20 m[...]
-
Page 98
98 Appendix A Command-Line P arameters for the serveradmin T ool and Default Mail Ser vice Settings Par ameter Default Value mail:imap:tls_sieve_cert_file "" mail:imap:userprefix "Other Users" mail:imap:mupdate_admins _empty_array mail:imap:mupdate_username "" mail:imap:quota_warn_frequency_days 0 mail:imap:tls_pop3_ce[...]
-
Page 99
Appendix A Command-Line P arameters for the serveradmin T ool and Default Mail Ser vice Settings 99 Par ameter Default Value mail:postfix:strict_rfc821_ envelopes no mail:postfix:tls_export_cipherlist "ALL:+RC4:@STRENGTH" mail:postfix:smtp_sasl_auth_cache_ name "" mail:postfix:check_for_od_forward "yes" mail:postfix:de[...]
-
Page 100
10 0 Appendix A Command-Line Par ameters for the ser veradmin T ool and Default Mail Ser vice Settings Par ameter Default Value mail:postfix:lmtp_pix_workaround_ maps "" mail:postfix:local_recipient_maps "proxy:unix:passwd.byname $alias_ maps" mail:postfix:lmtp_tls_enforce_ peername "yes" mail:postfix:lmtp_tls_fingerpr[...]
-
Page 101
Appendix A Command-Line P arameters for the serveradmin T ool and Default Mail Ser vice Settings 101 Par ameter Default Value mail:postfix:berkeley_db_create_ buffer_size 16777216 mail:postfix:forward_expansion_ filter "1234567890!@%-_=+:,./abcdefghijklm nopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUV WXYZ" mail:postfix:smtpd_client_port_ logging &qu[...]
-
Page 102
10 2 Appendix A Command-Line Par ameters for the ser veradmin T ool and Default Mail Ser vice Settings Par ameter Default Value mail:postfix:spam_notify_admin_ email "junk-admin@example.com" mail:postfix:smtpd_policy_service_ max_idle "300s" mail:postfix:smtpd_authorized_verp_ clients "$authorized_verp_clients" mail:po[...]
-
Page 103
Appendix A Command-Line P arameters for the serveradmin T ool and Default Mail Ser vice Settings 10 3 Par ameter Default Value mail:postfix:qmgr_message_ recipient_minimum 10 mail:postfix:relayhost "" mail:postfix:smtpd_banner "$myhostname ESMTP $mail_name" mail:postfix:virtual_alias_domains "$virtual_alias_maps" mail:[...]
-
Page 104
10 4 Appendix A Command-Line Par ameters for the ser veradmin T ool and Default Mail Ser vice Settings Par ameter Default Value mail:postfix:virus_action "delete" mail:postfix:anvil_rate_time_unit "60s" mail:postfix:smtpd_tls_key_file "/etc/certificates/example.com.057 1FAFAA0BFDC76BADA66D200C44FD4FBEBC D87.key.pem" ma[...]
-
Page 105
Appendix A Command-Line P arameters for the serveradmin T ool and Default Mail Ser vice Settings 10 5 Par ameter Default Value mail:postfix:anvil_status_update_ time "600s" mail:postfix:virtual_destination_ concurrency_positive_feedback "$default_destination_concurrency_ positive_feedback" mail:postfix:lmtp_tls_mandatory_ protoc[...]
-
Page 106
10 6 Appendix A Command-Line Par ameters for the ser veradmin T ool and Default Mail Ser vice Settings Par ameter Default Value mail:postfix:smtp_tls_note_ starttls_offer "no" mail:postfix:lmtp_sasl_tls_ verified_security_options "$lmtp_sasl_tls_security_options" mail:postfix:bounce_notice_ recipient "postmaster" mail:[...]
-
Page 107
Appendix A Command-Line P arameters for the serveradmin T ool and Default Mail Ser vice Settings 10 7 Par ameter Default Value mail:postfix:strict_mailbox_ ownership "yes" mail:postfix:lmtp_header_checks "" mail:postfix:unknown_hostname_ reject_code 450 mail:postfix:spam_ok_languages "en fr de ja" mail:postfix:command_[...]
-
Page 108
10 8 Appendix A Command-Line Par ameters for the ser veradmin T ool and Default Mail Ser vice Settings Par ameter Default Value mail:postfix:milter_unknown_ command_macros "" mail:postfix:hash_queue_depth 1 mail:postfix:address_verify_ transport_maps "$transport_maps" mail:postfix:defer_service_name "defer" mail:postfi[...]
-
Page 109
Appendix A Command-Line P arameters for the serveradmin T ool and Default Mail Ser vice Settings 10 9 Par ameter Default Value mail:postfix:virtual_destination_ concurrency_failed_cohort_limit "$default_destination_concurrency_ failed_cohort_limit" mail:postfix:queue_minfree 0 mail:postfix:milter_helo_macros "{tls_version} {cipher} {[...]
-
Page 110
11 0 Appendix A Command-Line P arameters for the serveradmin T ool and Default M ail Ser vice Settings Par ameter Default Value mail:postfix:lmtp_connection_cache_ time_limit "2s" mail:postfix:smtp_tls_enforce_ peername "yes" mail:postfix:smtpd_soft_error_limit 10 mail:postfix:default_rbl_reply "$rbl_code Service unavailabl[...]
-
Page 111
Appendix A Command-Line P arameters for the serveradmin T ool and Default Mail Ser vice Settings 111 Par ameter Default Value mail:postfix:default_extra_ recipient_limit 1000 mail:postfix:mime_header_checks "$header_checks" mail:postfix:smtp_sasl_tls_ security_options "$smtp_sasl_security_options" mail:postfix:bounce_service_nam[...]
-
Page 112
11 2 Appendix A Command-Line Paramet ers for the ser veradmin T ool and Default Mail Ser vice Settings Par ameter Default Value mail:postfix:lmtp_sasl_security_ options "noplaintext, noanonymous" mail:postfix:lmtp_destination_rate_ delay "$default_destination_rate_delay" mail:postfix:import_environment "MAIL_CONFIG MAIL_DEB[...]
-
Page 113
Appendix A Command-Line P arameters for the serveradmin T ool and Default Mail Ser vice Settings 11 3 Par ameter Default Value mail:postfix:milter_end_of_header_ macros "i" mail:postfix:lmtp_sasl_auth_enable no mail:postfix:smtp_initial_ destination_concurrency "$initial_destination_concurrency" mail:postfix:lmtp_tls_per_site &q[...]
-
Page 114
11 4 Appendix A Command-Line P arameters for the serveradmin T ool and Default M ail Ser vice Settings Par ameter Default Value mail:postfix:smtp_tls_security_ level "" mail:postfix:mynetworks_style "subnet" mail:postfix:lmtp_quote_rfc821_ envelope "yes" mail:postfix:lmtp_tls_note_ starttls_offer "no" mail:po[...]
-
Page 115
Appendix A Command-Line P arameters for the serveradmin T ool and Default Mail Ser vice Settings 11 5 Par ameter Default Value mail:postfix:smtp_mx_session_limit "2" mail:postfix:header_address_token_ limit 10240 mail:postfix:spam_subject_tag "***JUNK MAIL*** " mail:postfix:smtp_rcpt_timeout "300s" mail:postfix:smtpd_t[...]
-
Page 116
11 6 Appendix A Command-Line P arameters for the serveradmin T ool and Default M ail Ser vice Settings Par ameter Default Value mail:postfix:virus_notify_admin_ email "virus-admin@example.com" mail:postfix:default_recipient_ limit 20000 mail:postfix:virtual_mailbox_lock "fcntl, dotlock" mail:postfix:authorized_flush_users "[...]
-
Page 117
Appendix A Command-Line P arameters for the serveradmin T ool and Default Mail Ser vice Settings 11 7 Par ameter Default Value mail:postfix:parent_domain_matches_ subdomains "debug_peer_list,fast_flush_ domains,mynetworks,permit_mx_ backup_networks,qmqpd_authorized_ clients,relay_domains,smtpd_access_ maps" mail:postfix:lmtp_cname_overrid[...]
-
Page 118
11 8 Appendix A Command-Line P arameters for the serveradmin T ool and Default M ail Ser vice Settings Par ameter Default Value mail:postfix:access_map_reject_code 554 mail:postfix:lmtp_sasl_mechanism_ filter "" mail:postfix:lmtp_sasl_auth_soft_ bounce "yes" mail:postfix:lmtp_sender_dependent_ authentication "no" mail:[...]
-
Page 119
Appendix A Command-Line P arameters for the serveradmin T ool and Default Mail Ser vice Settings 11 9 Par ameter Default Value mail:postfix:lmtp_destination_ concurrency_positive_feedback "$default_destination_concurrency_ positive_feedback" mail:postfix:propagate_unmatched_ extensions "canonical, virtual" mail:postfix:unknown_v[...]
-
Page 120
12 0 Appendix A Command-Line Paramet ers for the ser veradmin T ool and Default Mail Ser vice Settings Par ameter Default Value mail:postfix:smtp_discard_ehlo_ keywords "" mail:postfix:delay_warning_time "0h" mail:postfix:smtp_connect_timeout "30s" mail:postfix:smtp_tls_mandatory_ exclude_ciphers "" mail:post[...]
-
Page 121
Appendix A Command-Line P arameters for the serveradmin T ool and Default Mail Ser vice Settings 12 1 Par ameter Default Value mail:postfix:lmtp_tls_fingerprint_ cert_match "" mail:postfix:connection_cache_ttl_ limit "2s" mail:postfix:smtpd_etrn_ restrictions "" mail:postfix:virtual_destination_ rate_delay "$defau[...]
-
Page 122
12 2 Appendix A Command-Line Paramet ers for the ser veradmin T ool and Default Mail Ser vice Settings Par ameter Default Value mail:postfix:relay_destination_ rate_delay "$default_destination_rate_delay" mail:postfix:lmtp_pix_workarounds "disable_esmtp,delay_dotcrlf" mail:postfix:lmtp_destination_ concurrency_limit "$defau[...]
-
Page 123
Appendix A Command-Line P arameters for the serveradmin T ool and Default Mail Ser vice Settings 12 3 Par ameter Default Value mail:postfix:smtpd_tls_session_ cache_database "" mail:postfix:virtual_destination_ concurrency_negative_feedback "$default_destination_concurrency_ negative_feedback" mail:postfix:smtpd_tls_key_file_ co[...]
-
Page 124
12 4 Appendix A Command-Line Paramet ers for the ser veradmin T ool and Default Mail Ser vice Settings Par ameter Default Value mail:postfix:fast_flush_purge_time "7d" mail:postfix:local_destination_ concurrency_positive_feedback "$default_destination_concurrency_ positive_feedback" mail:postfix:body_checks_size_limit 51200 mail[...]
-
Page 125
Appendix A Command-Line P arameters for the serveradmin T ool and Default Mail Ser vice Settings 12 5 Par ameter Default Value mail:postfix:defer_code 450 mail:postfix:lmtp_connect_timeout "0s" mail:postfix:local_destination_ rate_delay "$default_destination_rate_delay" mail:postfix:lmtp_data_done_timeout "600s" mail:p[...]
-
Page 126
12 6 Appendix A Command-Line Paramet ers for the ser veradmin T ool and Default Mail Ser vice Settings Par ameter Default Value mail:postfix:milter_rcpt_macros "i {rcpt_addr}" mail:postfix:maps_rbl_domains:_ array_index:0 "" mail:postfix:smtp_skip_5xx_greeting yes mail:postfix:smtp_quote_rfc821_ envelope "yes" mail:pos[...]
-
Page 127
Appendix A Command-Line P arameters for the serveradmin T ool and Default Mail Ser vice Settings 12 7 Par ameter Default Value mail:postfix:smtpd_tls_wrappermode "no" mail:postfix:queue_run_delay "300s" mail:postfix:minimal_backoff_time "300s" mail:postfix:local_destination_ concurrency_limit 2 mail:postfix:virtual_mai[...]
-
Page 128
12 8 The follo wing are examples of common sieve scripts a user might want to use . V acation Notication Script #-------- # This is a sample script for vacation rules. # Read the comments following the pound/hash to find out # what the script is doing. #--------- # # Make sure the vacation extension is used. require "vacation"; # Defin[...]
-
Page 129
Appendix B Sample Sieve Scripts 12 9 Self-Dened Forwarding #-------- # This is a sample script to illustrate how Sieve could be used # to let users handle their own mail forwarding needs. # Read the comments following the pound/hash to find out what the # script is doing. #--------- # # No need to add any extension. 'redirect' is built[...]
-
Page 130
13 0 Appendix B Sample Sieve Scripts } # # If the junk mail filter thinks this is probably junk else if header :contains ["X-Spam-Level"] ["***"]{ # put it in my junkmail box for me to check fileinto "INBOX.JunkMail"; } # # for all other cases... else { # put it in my inbox fileinto "INBOX"; } # End of script[...]
-
Page 131
A access ACLs 63 administrator 85 anonymous 26 , 27 connection control 3 2 , 33 , 34 frequency of user 88 Mailman 1 8 See also IMAP accounts, administrator 85 See also user accounts ACLs (access con trol lists) 63 addresses. S ee email addresses, IP addresses administrator account for 8 5 folder access 8 5 mailing list 44 , 50 , 5 1 aliases, user e[...]
-
Page 132
13 2 Index lters blacklisted mail senders 33 , 34 junk mail 1 4 , 35 , 36 , 37 virus 34 , 38 Firewall service, sending mail through 33 forwarding mail 78 , 92 , 12 9 G groups, blind carbon copies 29 groups-based mailing lists 1 8 , 42 H help, using 8 hosts. See ser vers I IMAP (Internet Message Access P rotocol) administrator access 8 5 authenti[...]
-
Page 133
Index 13 3 viewing 50 vs. workgroups 1 8 See also Mailman, subscribers Mailman access 1 8 adding subscribers 49 administrator 50 as mailing list service 1 8 bounced message options 48 creating mailing list 45 enabling 44 list description 46 maximum message length 46 moderator 48 , 52 naming list 45 overview 43 , 44 privacy option 49 unsubscribe mes[...]
-
Page 134
13 4 Index junk mail screening 27 , 3 1 , 32 log 86 overview 1 3 relay through int er mediate server 28 restricting relay 3 1 , 32 SSL transport 68 spam. See junk mail screening SpamAssassin. See junk mail screening SquirrelMail. See WebMail SSL (Secure Sockets Layer) certicates 69 , 7 1 IMAP 68 password le 7 2 POP 68 setup 67 SMTP 68 subscri[...]