[Tfug] Suggestions for an email gateway

Sam Hart hart at physics.arizona.edu
Mon Nov 24 09:02:42 MST 2003 

Well, I'll admit I am a little bit biased, considering I teach this in my 
class, heh-heh-heh ;-)

But I like Postfix+Amavisd-new+SpamAssassin+DCC+Sophos+Sophie. I've found 
that it is /very/ efficient for systems with high mail throughput (but I'd 
still probably put it on a dedicated box) and, if you're willing to tweak 
the SpamAssassin rules a bit, you'll get something that filters spam 
/really/ well.

I actually have an online walkthrough for setting it up which I teach in 
my class. You can get it here:
 http://www.geekcomix.com/cgi-bin/classnotes/wiki.pl?Setting_Up_An_Anti-SPAM_Gateway

My walkthrough was based in part on this one:
 http://lawmonkey.org/anti-spam.html

One bit of advice: Chrooting everything does make things more secure, but 
outside of an educational environment (or a highly paranoid one) I don't 
see the need. If you get rid of the custom Chrooting of Amavisd-new, you 
shave off a couple of hours of work, and still have something that is very 
secure (obviously, still run Postfix chroot).

You can use other MTAs with this same setup if you desire (you're using 
Amavisd-new as the interface to everything else), but I personally like 
the efficiency of Postfix.

Oh, I have about two years worth of data on this type of setup (basically, 
filtered, false-positives and negatives from tux4kids.net as well as 
geekcomix.com). One of these days I'm going to tabulate it and do some 
data analysis on it so I can give some concrete evidence that this setup 
actually works ;-)

* On 03-11-23, Mike Morrell wrote:

>   I want to setup an email gateway to handle SPAM and AV scanning on my
> firewall.  Whats the best MTA to handle such a simple role?  It does not
> need to do anything more then relay and maybe queue emails if my email
> server is down.  I was going to use Courier but that seems like
> overkill.
> 
> 
> Mike
> 
> _______________________________________________
> tfug mailing list
> tfug at tfug.org
> http://www.tfug.org/mailman/listinfo/tfug
> 

-- 
Sam Hart
University/Work addr. <hart at physics.arizona.edu>
Personal addr. <criswell at geekcomix.com>
Alternative <criswell at tux4kids.net>
end

More information about the tfug mailing list