Differences from version 1 to 8



@@ -1,11 +1,83 @@

 {maketoc}
 !Overview
-With Mac OS X Server 10.4, Apple introduced new suite of mail server tools. Similar to Apple's use of Apache, these tools are all based on open-source tools that are workhorses for UNIX servers. Apple has also added a very nice GUI on top of these tools to make adminstering them very simple for the non-unix inclined. Even for shell geeks, the integration of the GUI to text config files is extremely useful for people with more important servers to run.
+With Mac OS X Server 10.4, Apple introduced new suite of mail server tools. Similar to Apple's use of Apache, these tools are all based on open-source tools that are workhorses for UNIX servers. Apple has also added a very nice GUI on top of these tools to make adminstering them very simple for the non-unix inclined. This GUI can be found in the "Server Admin" application, and click on "Mail". Even for shell geeks, the integration of the GUI to text config files is extremely useful for people with more important servers to run.
 
 The Apple mail server uses postfix as it's primary smtp gateway. For virus protection, it uses amavisd which launches spamassassin for spam cleanup. This all comes preconfigured and ready to go out of the box.
+
+!!Remote Administration
+Everything can be done via the command line, however the OS X Server gui makes life painless. To run this __remotely and free__, do the following:
+
+#Run [http://sourceforge.net/projects/osxvnc/|OSXvnc] on your server
+#On your local machine, enter the following code into ~/.ssh/config {code}
+Host mail.foobar.com
+ User johndoe
+ Compression yes
+ LocalForward 5901 localhost:5901
+{/code} and the "ssh johndoe@mail.foobar.com".
+# Once logged in, run your local VNC client, [http://sourceforge.net/projects/cotvnc/|Chicken of the VNC] is a great Mac VNC client. Open a connection to "localhost" and display "1"
+
+You should get a window to the server. If not, first make sure you have a connection to port 5901 open on your local port. For example, try "telnet localhost 5901". If that does not connect, try a direct ssh port forwarding with"ssh -C -L 5901:localhost:5901 johndoe@mail.foobar.com"
 
 !!Webmail support
 While Apple does not include any webmail support, [http://roundcube.net/] is a fabulous web 2.0 webmail application that works with IMAP and is comparable to yahoo/gmail. It can be setup up on an OS X Server machine in about 10 minutes.
+
+!!Configuration
+I recommend using dovecot for IMAP, however, I forget why. It can be installed using MacPorts, e.g. "sudo port install dovecot" (see below). Turn off
+!!Spam Settings
+* You will want to tweak your spamassassin rules for your organization. Here is what I use and it is highly effective:{code}
+score AWL -99.00
+
+score HELO_DYNAMIC_IPADDR 6.00
+score HELO_DYNAMIC_SPLIT_IP 4.00
+score RCVD_FAKE_HELO_DOTCOM 4.00
+score RCVD_NUMERIC_HELO 3.00
+
+score AS_SEEN_ON 2.00
+score BANG_OPRAH 2.00
+score DIET_1 9.99
+score DRUGS_ERECTILE 9.99
+score DRUGS_MUSCLE 9.99
+score MORE_SEX 9.99
+score MORTGAGE_PITCH 4.00
+score ONLINE_PHARMACY 4.00
+score STOCK_PICK 1.00
+score URG_BIZ 1.00
+
+score BAYES_00 0.0 0.0 0.0
+score BAYES_05 0.0 0.0 0.0
+score BAYES_20 0.0 0.0 0.0
+score BAYES_40 0.0 0.0 0.0
+score BAYES_50 0.0 0.0 0.0
+score BAYES_60 2.00
+score BAYES_70 2.60
+score BAYES_80 4.20
+score BAYES_90 4.30
+score BAYES_99 5.00
+
+score RCVD_IN_DBL 4.30
+score RCVD_IN_SBL 1.00
+score RCVD_IN_BONDEDSENDER -5.00
+score HABEAS_SWE 0.00
+
+describe FOOBAR_CBTICKET subject is support ticket
+header FOOBAR_CBTICKET Subject =~ /\[foobar.com \#/i
+score FOOBAR_CBTICKET -99.0
+
+describe FOOBAR_FOOBAR subject has foobar (our company)
+header FOOBAR_FOOBAR Subject =~ /foobar/i
+score FOOBAR_FOOBAR -3.0
+
+describe FOOBAR_ORDER Favored word: Order
+header FOOBAR_ORDER Subject =~ /order/i
+score FOOBAR_ORDER -2.0
+
+describe FOOBAR_PHOTO Favored word: Photo
+body FOOBAR_PHOTO /photo /i
+score FOOBAR_PHOTO -.5
+{/code}
+* Under the "Filters" tab, I have "Minimum Junk Mail score:" set to 5, and Junk Mail Message should be: __Bounced__. Note this is a pretty aggressive setting to bounce. However, after running mail for 3 months without any false positives, I felt confident bouncing all this crap instead of filtering it to my spam folder.
+* Update junk mail database every [ 1 ] day (the default)
+* Install SPF and DomainKeys as instructed below. SPF is easy, DomainKeys is harder, and I have yet to get around to it.
 
 !Installing Pitfalls
 Out of the Box, the mail suite is ready to go. However, there are few dangers.
Page History
Date/CommentUserIPVersion
25 Sep 2007 (15:47 UTC)
spiderr66.194.217.2238
Current • Source
spiderr69.134.60.2044
View • Compare • Difference • Source
spiderr69.134.60.2042
View • Compare • Difference • Source
spiderr69.134.148.401
View • Compare • Difference • Source