|
|
|
|
|
|
|
|
|
|
FIGHT BACK AGAINST SPAM
Prevent spammers from abusing your Domino systems
By Daniel Koffler
Nobody wants spam in their inbox. Getting spam cuts into user productivity, uses system resources, and tends to generate many help desk complaints. However, as a Domino administrator, it should be your top priority to make sure that spam does not disrupt your IT infrastructure before you worry about it ending up in someone's mailbox. There are two major ways spam can wreak havoc on your Domino infrastructure that won't generate a single user complaint until it's too late: open relays and spam-related DoS (Denial of Service) attacks.
"Imagine explaining that to your boss."
|
Let's look at each in turn.
Relay races
Open SMTP relays are servers that are willing to accept and resend email for anyone. This allows spammers to blast messages to millions of addresses and hide their tracks simultaneously. Many open relays exist across the Internet and spammers search for new ones continuously. Since most open relays are simply the poorly configured SMTP servers of unsuspecting administrators, it is unlikely that this problem will resolve itself.
There is absolutely no valid reason to run an open SMTP relay. Spammers will eventually find it and exploit it. Even if they don't, one of the open relay blacklist testing servers will and your IP range will end up blacklisted across the Internet, unable to send mail to major ISPs and corporations. Imagine explaining that to your boss.
How to be sure you don't have an open relay
In order to setup inbound relay controls, open Domino Administrator, select the Configuration tab, then select Messaging -> Messaging Settings in the left frame. In Messaging settings, select Restrictions and Controls -> SMTP Inbound Controls.
In the "Inbound Relay Controls" section you can allow or deny any domains to which relayed mail may be delivered, as well as, which Internet hosts may connect to this server to relay messages to those domains. The "Inbound Relay Enforcement" section (these are new features in Domino 6) allows you to specify who is exempt from the "Inbound Relay Controls" rules.
Domino 6, by default, denies messages from all hosts to be sent to external internet domains, but only applies this rule to hosts outside the local internet domain. This setting should be secure enough for most organizations.
[ Next ]
|
|
|
|
|
|
-- Advertisement --
PistolSTAR: the de facto standard for Lotus authentication
PistolStar's Password Power integrates with Microsoft Active Directory to enable single sign-on to Lotus applications and automatic recovery of the Notes ID password via self-service reset of the Active Directory password.
- A single set of credentials to remember - one set of password policies to manage.
- Cost-effective plug-ins integrate smoothly with your environment.
- Proven, ground-breaking technology deployed to millions of users.
Learn more. |
-- Advertisement --
Now for the first time, real-time dashboards within Notes!
No more tedious report iteration and endless data exporting! The New IntelliPRINT Dashboard Reporting now empowers you to easily create analyzable widgets and real-time dashboard reports. Your business managers can then quickly customize, extend, and analyze these dashboards to their heart's content!
All from within your Lotus Notes data, all in real-time!
Download your Free Trial today! |
|
|
|
|
|
|
|
|
