Andy Goldschmidt wrote: > Hi > > LPI 202 - Topic 211.1 Using e-mail services > > Below are some questions on the above topic. > > > 1) Quotas > ----------------- > What needs to be covered for "e-mail quotas" ? > If it a patch we need to apply to postfix to allow it to do quotas ? > OR > Is this simple Linux quotas on a per-user basis ?
Soft and hard quotas are fairly critical in the operation of a well tuned mail server. Clearly dictionary attacks or similar types of attacks via say SPAMing a web server form could result in the mail spool filling up or even a denial of services. So I would argue this is a day to day activity and important for the test candidate to understand. > 2) "Basic knowledge of the SMTP protocol" > ---------------------------------------------------------- > What do we need to cover here ? The test candidate should know enough to be able to telnet to a port and test that mail is functional by manually entering commands. One could describe the scenario and have the test candidate fill in the blanks for one or more of the commands or choose the order of commands. > 3) "sendmail emulation layer commands" > --------------------------------------------------------- > What does this cover ? Sendmail compatibility commands are not likely to be deprecated for some time. A basic understanding that the commands exist and what they do is worth adding into the question pool. > 4) "exim" > ---------------- > How much exim do we need to know ? > simply what the configuration file is called ? Although Exim has a niche following and is still mainstream, I don't think it is critical to know operational aspects of it. I personally think Postfix and Sendmail represent the Lion's share today. > 5) Do we need to know these commands ? > ----------------------------------------------------------- > postqueue -p and -f > postcat > mailq > postalias /etc/aliases > postmap /etc/postfix/virtual > newaliases These seem reasonable to me. > > 6) "...configuring internal e-mail relays" > ----------------------------------------------------- > Is this a simple relay email to another server for processing ? >From a security standpoint I think it is critical that folks understand the notion of creating a choke point between the firewall or proxy server and the internal mail server nodes that face towards the outside and forbid any connections from the mail clients directly to the outside world. Even if this is tested at a conceptual layer with a true / false question. Mail is to critical of an apps today and way to many folks fail to configure the most fundamental security elements and leave themselves quite exposed. 7) Understanding how to manage and clean out queues is also quite critical to daily care and feeding of a mail server. We write small perl scripts to clean queues. Often the basic mail commands are not sufficient. > Regards > Andy > -- > This message has been scanned for viruses and > dangerous content by *MailScanner* <http://www.mailscanner.info/>, and is > believed to be clean. > > > ------------------------------------------------------------------------ > > _______________________________________________ > lpi-examdev mailing list > [email protected] > http://list.lpi.org/cgi-bin/mailman/listinfo/lpi-examdev -- 73 and 75 Gregg AB9MZ Gregory D. Rosenberg RICIS, Inc. Chief Technology Officer 8018 Mallow Drive [email protected] Tinley Park, IL 60477-2697 www.ricis.com United States +1 708-444-2690 Voice +1 866-742-4777 Voice (US and Canada) +1 708-444-2697 Fax +1 708-267-6664 Cell (Best) "When you love the work you do, you will never work a day in your life." Support anti-Spam legislation. Join the fight at www.cauce.org NOTICE: This e-mail message and all attachments transmitted with it are intended solely for the use of the addressee and may contain legally privileged and confidential information. If the reader of this message is not the intended recipient, or an employee or agent responsible for delivering this message to the intended recipient, you are hereby notified that any dissemination, distribution, copying, or other use of this message or its attachments is strictly prohibited. If you have received this message in error, please notify the sender immediately by replying to this message and please delete it from your computer. _______________________________________________ lpi-examdev mailing list [email protected] http://list.lpi.org/cgi-bin/mailman/listinfo/lpi-examdev
