Complete Contents
About This Guide
Chapter 1 Getting Started with Netscape Messaging Server
Chapter 2 Configuring POP, IMAP, and HTTP Services
Chapter 3 Configuring SMTP Services
Chapter 4 Managing Mail Users and Mailing Lists
Chapter 5 Managing the Message Store
Chapter 6 Security and Access Control
Chapter 7 Working with SMTP Plugins
Chapter 8 Filtering Unsolicited Bulk Email
Chapter 9 Message Routing
Chapter 10 Monitoring and Maintaining Your Server
Chapter 11 Logging and Log Analysis
Chapter 12 Program Delivery
Chapter 13 Messaging Multiplexor
Appendix A Command Line Utilities
Appendix B sendmail Migration and Compatibility
Appendix C SNMP MIB
Glossary
Index
Messaging Server Administrator's Guide: Configuring SMTP Services
Previous Next Contents Index


Chapter 3 Configuring SMTP Services

This chapter describes how to configure SMTP services for your server using Netscape Console. For information on how to configure the POP, IMAP, or HTTP services, see Chapter 2, Configuring POP, IMAP, and HTTP Services.

You can also perform many SMTP configuration tasks through the command-line utility configutil. For instructions on how to use configutil, see Appendix A, Command-line Utilities.

This chapter contains the following sections:
About SMTP
Netscape Messaging Server supports the Internet-standard Simple Mail Transfer Protocol (SMTP). SMTP is the protocol most commonly used by the Internet to define how email is transferred between computers.

 User Agents (UAs), such as Netscape Communicator, use SMTP to send mail to a Message Transfer Agent (MTA). MTAs use SMTP to route messages to other MTAs within a network.

Netscape Messaging Server listens for incoming mail on port 25 by default, the standard port for SMTP services. Incoming mail can arrive from a local mail client (UA) or from a remote MTA. For detailed concepts about how Netscape Messaging Server receives and routes messages, see Chapter 9, Message Routing.


Viewing and Configuring Domain Information
A domain identifies a site on the Internet. Messaging servers use the domain name in an email address to route messages throughout the Internet. Every email message must contain a domain name in its address.

Each Messaging Server is responsible for a particular domain or domains. These domains are considered local to Messaging Server. If a server receives a message without a specified domain name, the server will complete the address by adding a domain name to the address. If Messaging Server receives mail for a remote domain, it attempts to route the message to a remote MTA.

For more information about domains, the Domain Name System (DNS), and how messages are routed, see Chapter 9, Message Routing.

To view and configure information about domains:

  1. From Netscape Console, open the Messaging Server you want to configure.

  2. Click the Configuration tab and open the Services folder in the left pane.

  3. Select SMTP.

  4. Click the System tab in the right pane.
From this window, you can perform the following tasks:

 Specifying an Address Completion Domain

If Messaging Server receives a message that does not contain a domain name in the recipient address, it will add the domain name to the address to complete the address. You can specify the domain name to be used for address completion. If you do not specify a domain, the fully-qualified host name of the machine on which Messaging Server resides is used to complete the address.

To specify an address completion domain:

  1. Go to the SMTP System tab.

  2. In the "Address completion domain" field, type the name of the DNS domain that will be used to complete a recipient address if the address does not contain a domain name.

  3. Click Save.
Command Line

You can also specify an address completion domain at the command line as follows:

configutil -o service.smtp.defaultdomain -v domainname
Specifying the Domains Local to Your Server

A domain is local to your server if Messaging Server knows the recipient addresses in the domain. Messaging Server identifies a recipient address as local if the domain part of the address matches one of the following:

If a message is sent to a local domain, but the recipient cannot be found in the directory, Messaging Server will bounce the message. Otherwise, the server will either deliver the message to a local mailbox or route the message to another server.

The server also checks the local domain configuration before it uses the "user ID" search method when that search method is enabled (see Specifying Alternate Search Methods). The server checks to see if the domain in the address is configured as a local domain; if the domain is local, the server will use the "user ID" search method if configured to do so.

To specify the domains local to your server:

  1. Go to the SMTP System tab.

  2. Click the Add button beside the "Local domain" field.

  3. Type the domain you want to add.

  4. Click OK to add the domain to the list of local domains in the SMTP System window.

    5. Mail sent to an unknown recipient at any of these domains is bounced.

  5. When you finished adding domain information, click Save in the SMTP System window.

    6. Note that changes are not saved until you click Save in the SMTP System window.

Command Line

You can also specify the domains local to your server at the command line as follows:

configutil -o service.smtp.smtp-router.localmaildomains -v domainnames
where domainnames is a space-separated list of domain names.
Specifying Delivery Options
You can specify the following delivery options for messages sent to your server:

 Delivering Mail to Unix Mail Folders

For user's who have a Unix system account on the Messaging Server host machine, Messaging Server can deliver mail to the user's local Unix mail folder. You specify the Unix mail delivery program to which Messaging Server should deliver mail.

For users to use this feature, you must enable this feature for the user account (see Chapter 4, Managing Mail Users and Mailing Lists) and the user must turn on this option for their accounts (specified in the end user account management form).

Unix delivery is available only to users with a system account on the Messaging Server host (in addition to the Messaging Server account).

To specify a Unix mail delivery program:

  1. From Netscape Console, open the Messaging Server you want to configure.

  2. Click the Configuration tab and open the Services folder in the left pane.

  3. Select SMTP.

  4. Click the System tab in the right pane.

  5. In the "Local mail delivery program" field, type the path of the Unix mail delivery program to which Messaging Server should deliver mail for accounts with the Unix-delivery option enabled.

    6. For example: /usr/bin/mail

  6. Click Save.
Command Line

You can also set the Unix mail delivery program at the command line as follows:

configutil -o service.smtp.unix-deliver.maildeliveryprogram
   -v progpath
Delivering Mail to a Program

By default, messages are delivered to an account inbox. Program delivery allows messages to be delivered to external programs, such as filtering programs, file server programs, and so on.

When you or a user specifies program delivery as an account option, one or more programs are run whenever mail addressed to that account is received. Messaging Server starts the program and delivers mail to the program.

 On Unix platforms, for security reasons, Messaging Server never runs any program as "root." To enable program delivery for the root account on Unix, you must specify a safe ID for root. If a root user enables the program delivery option in the server account management forms, mail sent to root will be handled by one or more programs running under the safe ID for root. If you do not specify a safe ID, program delivery for the root account will fail and the server will bounce messages sent to programs set up for the root account.

 On Windows NT, programs are run under the server account specified at installation time (the System account by default). If you wish, you can specify that programs run under another account.

 For more information about setting up and enabling program delivery, see Chapter 12, Program Delivery.

To specify a safe ID for root (Unix platforms) or to specify the Windows NT account under which the program will run:

  1. From Netscape Console, open the Messaging Server you want to configure.

  2. Click the Configuration tab and open the Services folder in the left pane.

  3. Select SMTP.

  4. Click the System tab in the right pane.

  5. Specify information for the following fields:

    6. For Unix platforms:

    Safe user ID for running programs. In this field, type the safe Unix user ID for running programs set up for the root account.

    Safe group ID for running programs. In this field, type the safe Unix group ID for running programs set up for the root account. The safe Unix user ID should be a member of the safe group ID.

    For Windows NT:

    NT account to run program as. In this field, type the user ID under which programs will run.

    Password for this account. In this field, type the password for the NT account.

  6. Click Save.
Command Line

You can also set these values at the command line as follows:

Unix

 
configutil -o service.smtp.prog-deliver.defaultuid -v uid
configutil -o service.smtp.prog-deliver.defaultgid -v groupid
NT

 
configutil -o service.smtp.prog-deliver.ntaccount -v uid
configutil -o service.smtp.prog-deliver.ntpassword -v password
Deferring Delivery

By default, Messaging Server attempts to deliver messages immediately; the server queues mail only if there is a problem. You can specify that Messaging Server queue all outgoing mail and attempt delivery only when it processes the message queue. The server processes the message queue on intervals you indicate. For more information, see Message Queue Concepts.

This option is most useful for businesses that do not maintain a continuous connection to the Internet, but use dial-up connections instead. For example, Messaging Server can dial out to a remote host and then process the mail queue for the remote host.

To specify deferred delivery, go to the SMTP Accept tab:

  1. From Netscape Console, open the Messaging Server you want to configure.

  2. Click the Configuration tab and open the Services folder in the left pane.

  3. Select SMTP.

  4. Click the Accept tab in the right pane.

  5. Check the "Defer delivery to remote hosts" box.

  6. Click Save.
If you are specifying deferred delivery, you might also want to turn on the SMTP command, ETRN, to enable requests for deferred queue processing. With deferred queue processing, when a client (in this case, another MTA) connects to the server to send a message, it can also initiate processing of the deferred queue for the client domain. For more information, see Enabling Requests for Deferred Queue Processing (ETRN).

Command Line

You can also set this value at the command line as follows:

configutil -o service.smtp.smtp-deliver.alwaysqueue -v [ yes | no ]

Verifying Recipient Addresses
You can specify that Messaging Server verify recipient addresses for messages it accepts from clients.

 By enabling this option, the server can detect bad recipient names in the envelope address and return an error to the client before the client sends the body of the message. The client can fix the name before sending the message text.

Specifying this option has slight performance impact because the server must perform an LDAP lookup for each recipient while connected to the client. The benefit, however, is that bad recipients can be rejected immediately, allowing the sender to fix the address before sending (instead of getting a bounce message later).

To specify verification of recipient addresses, go to the SMTP Accept tab:

  1. From Netscape Console, open the Messaging Server you want to configure.

  2. Click the Configuration tab and open the Services folder in the left pane.

  3. Select SMTP.

  4. Click the Accept tab in the right pane.

  5. Check the "Verify each recipient's address" box.

  6. Click Save.
Command Line

You can also set this value at the command line as follows:

configutil -o service.smtp.smtp-accept.verifyrcpts -v [ yes| no ]

Performing Reverse IP Address Lookups
You can specify that Netscape Messaging Server perform reverse IP address lookups for client connections.

Using the client's IP address, Messaging Server will use DNS to find the associated host name. Messaging Server will subsequently refer to client machines by host name instead of IP address. For example, host names will be used in the process table, the log file, and "Received" lines in message headers.

Note: If you handle a large volume of messages, be aware that selecting this option impacts performance adversely.

 To specify that the server should perform reverse IP address lookups, go to the SMTP Accept tab.

  1. From Netscape Console, open the Messaging Server you want to configure.

  2. Click the Configuration tab and open the Services folder in the left pane.

  3. Select SMTP.

  4. Click the Accept tab in the right pane.

  5. Check the "Lookup client machine names" box.

  6. Click Save.
Command Line

You can also set this value at the command line as follows:

configutil -o service.smtp.doclientdnslookup -v [ yes| no ]
Specifying the Number of MTA Hops
Each MTA adds a Received: header to each incoming message. By counting the number of Received lines in the message header, the MTA can determine how many MTAs have already handled this message. The act of routing a message from one MTA to another is called a hop or an MTA hop. Each time an MTA handles a message, the message has taken another hop.

 To deliver a message might require many hops. You might want to limit the number of hops for various reasons; for example, to prevent infinite mail loops. If the number of hops exceeds the maximum you specify, the message is bounced with an error message.

To specify the maximum number of MTA hops, go to the SMTP Accept tab:

  1. From Netscape Console, open the Messaging Server you want to configure.

  2. Click the Configuration tab and open the Services folder in the left pane.

  3. Select SMTP.

  4. Click the Accept tab in the right pane.

  5. In the "Maximum number of MTA hops" field, specify a number.

    6. The recommended range for this parameter is 30 or more. The default number is 30.

  6. Click Save.
Command Line

You can also set this value at the command line as follows:

configutil -o service.smtp.smtp-router.maxmtahops -v number

Reserving Free Disk Space for the Message Queue
You can specify a minimum amount of disk space that will remain unused for the message queue. If the minimum threshold is reached, the server will temporarily refuse to accept messages until disk space is freed. The server returns an error notifying the client of a temporary disk space shortage and asks the sending client or MTA to resend the message at a later time.

 The server can also reject messages based on an administrative message size limit. For more information about specifying a maximum message size, see Limiting Message Size (SIZE).

To reserve free disk space for the message queue, go to the SMTP Accept tab:

  1. From Netscape Console, open the Messaging Server you want to configure.

  2. Click the Configuration tab and open the Services folder in the left pane.

  3. Select SMTP.

  4. Click the Accept tab in the right pane.

  5. In the "Minimum free disk space" field, specify a number.

  6. From the drop-down list beside the field, specify Kbytes or Mbytes.

  7. Click Save.
Command Line

You can also set this value at the command line as follows:

configutil -o service.smtp.smtp-accept.minfreediskspace -v number

Enabling Optional SMTP Features
Netscape Messaging Server supports several SMTP commands for enabling extra functionality in the dialog between an SMTP client (either a UA or another server) and Messaging Server.

 To enable these commands, go to the SMTP Accept tab:

  1. From Netscape Console, open the Messaging Server you want to configure.

  2. Click the Configuration tab and open the Services folder in the left pane.

  3. Select SMTP.

  4. Click the Accept tab in the right pane.
From this tab, you can enable SMTP commands for the following:

 Verifying User Names (VRFY)

The VRFY command enables clients to send a request to your server to verify that mail for a specific user name resides on the server.

The server sends a response indicating whether the user is local or not, whether mail will be forwarded, and so on. A response of 250 indicates that the user name is local; a response of 251 indicates that the user name is not local, but the server can forward the message. The server response includes the mailbox name. The VRFY command is defined in RFC 821.

 To enable verification of user names:

  1. Click the SMTP Accept tab.

  2. Check the "Allow SMTP command VRFY" box to enable the SMTP command for verifying a user name.

  3. Click Save.
Caution: Because the server response might include user IDs, do not enable this option unless you are willing to reveal user IDs to clients accessing your server.

 Command Line

You can also set this value at the command line as follows:

configutil -o service.smtp.smtp-accept.allowvrfy -v [ yes | no ]
Verifying a Mailing List (EXPN)

If both the client and the server support the SMTP EXPN command, clients can make requests to your server to verify that a particular mailing list resides on the server. The EXPN command is defined in RFC 821.

To enable verification of mailing lists on your server:

  1. Click the SMTP Accept tab.

  2. Check the "Allow SMTP command EXPN" box to enable the SMTP command for verifying a user name.

  3. Click Save.
Caution: Do not enable this option unless you are willing to acknowledge mailing lists to clients accessing your server.

Command Line

You can also set this value at the command line as follows:

configutil -o service.smtp.smtp-accept.allowexpn -v [ yes | no ]
Enabling Requests for Deferred Queue Processing (ETRN)

If both the client (in this case another MTA) and the server support the ETRN command--when the client connects to the server to send a message, it can initiate processing of the deferred queue for the client domain. If there are any messages awaiting delivery to the domain given in the ETRN command, the server attempts to send the messages using one or more new SMTP connections. The ETRN command is defined in RFC 1985.

This feature is useful for sites that are set up as secondary mail exchange (MX) hosts for other sites that only have a dial-up connection to the Internet. By enabling this command, you permit dial-up servers to request delivery of their mail. (For more information about setting up MX hosts, see Using MX Records.)

To enable requests for deferred queue processing:

  1. Click the SMTP Accept tab.

  2. Check the "Allow SMTP command ETRN" box to enable the SMTP command for enabling requests for deferred queue processing.

  3. Click Save.
Command Line

You can also set this value at the command line as follows:

configutil -o service.smtp.smtp-accept.allowetrn -v [ yes | no ]
Limiting Message Size (SIZE)

If both client and server support the SIZE command, clients can declare the size of a particular message to the server, and the server can accept or reject the message based on its size. Any attempts to send a message larger than the specified size will automatically fail and the server will return an error message indicating that the message size exceeds the maximum allowed. The SIZE command is defined in RFC 1870.

The server can also reject a message temporarily if it is running low on disk space. For more information, see Reserving Free Disk Space for the Message Queue.

To limit the size of messages your server accepts:

  1. Click the SMTP Accept tab.

  2. Check the "Allow SMTP command SIZE" box to enable the SMTP SIZE command.

  3. Indicate the maximum size message the server will accept by typing a number in the field beside the checkbox; from the associated drop-down list, select MBytes or KBytes.

  4. Click Save.
Command Line

You can also set these values at the command line as follows:

configutil -o service.smtp.smtp-accept.allowsize -v [ yes | no ]
configutil -o service.smtp.smtp-accept.maxmessagesize -v value

Specifying Automatic Reply Information
You can specify default reply messages for several situations. For example, you can specify a default vacation reply message for users who do not write a personalized message or you can specify a default reply for messages sent to a particular address.

 To specify automatic reply information, go to the SMTP Autoreply window:

  1. From Netscape Console, open the Messaging Server you want to configure.

  2. Click the Configuration tab and open the Services folder in the left pane.

  3. Select SMTP.

  4. Click the Autoreply tab in the right pane.

  5. From the drop-down list for each field, select the language of your choice.

  6. Type the default messages for each of the reply fields:

    7. Default vacation-mode reply message. Type an automatic reply for users who do not write a personalized vacation message.

    Anyone who sends messages to a user's account while the vacation setting is activated will receive one notice about the user's absence. Any subsequent messages that person sends are ignored.

    In most cases, you should not replace a user's current delivery with the vacation setting when they set up the AutoReply handler for that user's account. If you do this, the user will return from vacation only to find that all of his or her email has been thrown away. Rather, you should use the vacation setting in addition to the normal delivery method, so mail is held for the user to retrieve upon his or her return. (Users are prevented from making this mistake because Messaging Server doesn't accept account management forms with a delivery of "Vacation" only.)

    Default echo-mode reply message. Type an automatic reply for the server's echo feature.

    The echo feature generates a message to anyone who sends a message to the account. In addition, it returns the mail (as a MIME attachment) that was sent to the account, so that the sender gets back the original message as well as the message that you entered.

    The echo feature, like the vacation feature, is intended to inform people about the status of the account they have contacted. A common use of the echo feature is to return mail addressed to people who have moved on and left no forwarding address.

    Default reply-mode reply message. Type an automatic reply for the server's default reply mode.

    The default reply feature is useful for special accounts that are created to disseminate information of one kind or another. You can create a place where people can get files, analogous to a File Transfer Protocol (FTP) site on the Internet.

  7. Click Save.
Command Line

You can also set values for these attributes at the command line as follows:

To set the value for the default vacation reply:

 
configutil -o service.smtp.autoreply-handler.defaultvacation -v text
To set the value for the default echo reply:

 
configutil -o service.smtp.autoreply-handler.defaultecho -v text
To set the value for the default reply mode:

 
configutil -o service.smtp.autoreply-handler.defaultreply -v text
You can use the ;lang option to specify the default language. For more information, see configutil.


Specifying Error Handling
There are various situations in which an MTA cannot deliver or route a message. For example, when an address refers to an unknown local account, when the maximum number of MTA hops is exceeded, or when disk quota is exceeded.

 To specify error handling instructions, go to the SMTP Error tab:

  1. From Netscape Console, open the Messaging Server you want to configure.

  2. Click the Configuration tab and open the Services folder in the left pane.

  3. Select SMTP.

  4. Click the Error tab in the right pane.

  5. For each error situation, choose one or more of the following error handling methods:

  6. Click Save.
Command Line

You can also set these values at the command line as follows:

To specify an error action for when an address refers to an unknown local account:

 
configutil -o service.smtp.error-handler.unknownacctsactions -v value
To specify an error action for when disk quota is exceeded:

 
configutil -o service.smtp.error-handler.quotaexceededactions -v value
To specify an error action for when the maximum number of MTA hops is exceeded:

 
configutil -o service.smtp.error-handler.hopcountexceedactions -v value
value is one of the following:

 1 - To indicate return message to sender
4 - To indicate notify the postmaster via email
8 - To log the error in the log file

 or a combination of values; for example, specifying a value of 5 indicates return a message to the sender and notify the postmaster via email.


Specifying Routing and Addressing Information
For detailed conceptual information about routing and addressing, including information about envelope rewrite methods, alternate search methods, and the SMTP routing table, see Chapter 9, Message Routing.

To specify routing and addressing information, go to the Address tab:

  1. From Netscape Console, open the Messaging Server you want to configure.

  2. Click the Configuration tab and open the Services folder in the left pane.

  3. Select SMTP.

  4. Click the Address tab in the right pane.
From this tab, you can perform the following tasks:

 Note: You should shut down your server before specifying configuration changes on this tab.

 Specifying Envelope Rewrite Methods

You can specify whether and how the server rewrites the envelope recipient address before routing a message to a remote MTA. To specify envelope rewrite methods:

  1. Click the SMTP Address tab.

  2. Check one or more of the following boxes:

    3. Use the mailRoutingAddress attribute. This rewrite method uses the mailRoutingAddress attribute, which specifies a specific mail routing address.

    If you enable this rewrite method, you must modify the user's LDAP entry to include the mailRoutingAddress attribute. You can set this attribute only by using LDAP tools such as ldapmodify. For more information, see mailRoutingAddress Attribute.

    Combine the uid with the mailHost attribute. This rewrite method combines the uid attribute and the mailHost attribute found in the LDAP directory.

    This method is most likely to work properly if the "uid" search method is employed on the next server. For more information, see Combine uid and mailHost Attributes.

    Combine the local part of the address with the mailHost attribute. This rewrite method combines the local part of the original address with the mailHost attribute value to create the new address.

    This method is useful to support entities, such as mail groups, that do not have a uid. For more information, see Combine Local Part and mailHost Attribute.

  3. Click Save.
The default method is to use the original address unmodified.

 Command Line

You can also set this value at the command line as follows:

configutil -o service.smtp.smtp-router.enveloperewritemethod -v value
value is one of the following:

 1 - Use the mailRoutingAddress attribute
2 - Combine the uid with the mailHost attribute
4 - Combine the local part of the address with the mailHost attribute

 or a summary of values; for example, you can specify 7 to enable all rewrite methods.

Specifying From Address Rewrite Style

Rewriting the From: address increases the odds that replies to outgoing messages are processed correctly. For example, often the address that a mail client inserts in the From: line isn't the best choice. To specify how the server should rewrite the From: address:

  1. Click the SMTP Address tab.

  2. From the "From address rewrite style" drop-down list, choose one of the following rewrite styles:

    3. "john doe"<jdoe@company.com>. Choose this option to rewrite the address in the style indicated.

    jdoe@company.com (John Doe). Choose this option to rewrite the address in the style indicated.

    jdoe@company.com. Choose this option if you want the server to try to complete an incomplete address.

    never rewrite addresses. Choose this option if you do not want the server to rewrite any part of the From: address.

    You might want to choose this option, for example, if you have a plug-in program that performs address rewrites. Or, for another example, in a multilingual environment where you trust the sender to use the appropriate alphabet and do not want to modify the address.

  3. Click Save.
Note: To determine how to rewrite the address, the server looks at the specified site language for the domain. If the user information for the sender includes language information that matches the site language, the server will rewrite the address using the specified site language.

Command Line

You can also set this value at the command line as follows:

configutil -o service.smtp.smtp-router.smtprewritestyle 
  -v [ quoted | comment | qualify | never ]
Specifying Alternate Search Methods

You can expand the list of possible recipient matches by specifying one or more of the following search methods. If all search methods are specified, the server tries each method in the order listed until a match is found. The default setting is search on user ID only.

For detailed information on these search methods, see About Alternate Search Methods.

To specify alternate search methods:

  1. Click the SMTP Address tab.

  2. Check one or more of the following boxes:

    3. Search for custom domain. Check this box if you want the server to use the "custom domain" search method.

    Search using truncated domain. Check this box if you want the server to use the "truncated domain" search method.

    Search by user ID. Check this box if you want the server to use the "user ID" search method.

    Note that the "search by user ID" feature is for compatibility with earlier versions of Netscape Messaging Server. If your installation is new, Netscape recommends that you disable this feature.

  3. Click Save.
Note: Specifying alternate search methods has a slight impact on performance.

 Command Line

You can also set this value at the command line as follows:

configutil -o service.smtp.smtp-router.fallbacksearchmethod -v value
where value is one of the following:

 1 - Search for custom domain
2 - Search using truncated domain
4 - Search by user ID

 or a summary of values; for example, you can specify 7 to enable all search methods.

Editing SMTP Routing Table Entries

If Messaging Server assumes another messaging server is responsible for this recipient, Messaging Server checks its mail routing table to see if mail for the recipient's domain should be routed to a specific messaging server host.

Entries in the mail routing table are processed in order. You should keep this in mind when creating entries. For example, if you have an entry that sends all non-local mail to a firewall messaging server, you want this entry to be the last entry in the routing table.

For more information on the SMTP routing table and for example entries, see Checking the SMTP Routing Table.

To edit SMTP routing table entries:

  1. Click the SMTP Address tab.

  2. Click the Add button by the SMTP routing table field.

  3. Type a routing table entry.

  4. Click OK to return to the SMTP Address tab.

  5. Click Save.
Command Line

You can also specify routing table entries at the command line as follows:

configutil -o service.smtp.smtp-router.hostrewrites -v entry

Controlling Access to SMTP Services
Netscape Messaging Server provides several features that enable you to control access to your SMTP services. These features include:

 Netscape Messaging Server also supports the Secure Sockets Layer (SSL) protocol for transferring private data over TCP/IP networks. For details about determining the access control and security requirements for your server, see Chapter 6, Security and Access Control.

Enabling Authenticated SMTP

Authenticated SMTP provides for greater security in sending messages using the SMTP protocol. To use authenticated SMTP, you do not need to deploy a certificate-based infrastructure. However, authenticated SMTP does not provide the same level of security features as a certificate-based infrastructure.

With authenticated SMTP, the client (either a user agent or another server that supports authenticated SMTP) can indicate an authentication mechanism to the server, perform an authentication protocol exchange, and optionally negotiate a security layer for subsequent protocol interactions. For example, when supported by the user's mail client, authenticated SMTP can require users to enter a password before they are allowed to send messages.

For more information about authenticated SMTP, and when and how to use it in your security and access scheme, see Chapter 6, Security and Access Control.

To specify authenticated SMTP, go to the SMTP System tab:

  1. From Netscape Console, open the Messaging Server you want to configure.

  2. Click the Configuration tab and open the Services folder in the left pane.

  3. Select SMTP.

  4. Click the System tab in the right pane.

  5. Check the "Allow password login" box.

  6. Specify a minimum cipher length for password encryption.

    7. A cipher is the algorithm used to encrypt and decrypt data in the encryption process. A cipher operates on data by applying a key--a long number--to the data. Generally, a longer key represents a more secure encryption process.

    Caution: If you specify 0, the server permits unencrypted passwords. Do not specify 0 if you are concerned about sending passwords in clear text. Choose 40 or 128 to ensure that passwords are sent over secure channels.

  7. Click Save.
Command Line

You can also set this value at the command line as follows:

configutil -o service.smtp.plaintextmincipher -v value
where value is one of the following:

 -1 - To disable authenticated SMTP
0 - To enable with unencrypted passwords
40 - To enable with 40-bit cipher length
128 - To enable with 128-bit cipher length

 Specifying Access Control Filters

You can define access control filters to exclude spammers and DNS spoofers from your system and improve the general security of your network.

For detailed information about TCP client access control features including complete filter syntax, see Chapter 6, Security and Access Control.

Filtering Unsolicited Bulk Email

Unsolicited Bulk Email (UBE) is email sent to large number of recipients without their knowledge or consent, often advertising commercial products or services. It is the electronic equivalent of paper "junk mail."

Netscape Messaging Server provides an SMTP UBE plugin you can use to design and implement filters that block unsolicited bulk email from reaching your servers.

For details about the UBE plugin and how to use it to filter unwanted mail, see Chapter 8, Filtering Unsolicited Bulk Email.


Working with SMTP Plugins
Netscape Messaging Server provides an application programming interface (API) that allows third parties to create server plugins that can add site-specific functionality to Messaging Server.

For details on working with SMTP plugins, see Chapter 7, Working with SMTP Plug-Ins.


Message Queue Concepts
By default, Messaging Server attempts to deliver messages immediately; the server queues mail only if there is a problem, or if you have explicitly specified deferred delivery to other servers. (For information about specifying deferred delivery, see Deferring Delivery.)

This section describes two types of queue: logical and physical.

Logical Queue

A logical queue is a set of messages waiting to be processed. A logical queue might be the active queue or a deferred queue.

Physical Queue

A physical queue is a path on the server's file system that the server uses to store queued messages and their associated control information. Physical queues are like message store partitions, except they don't have names. Multiple physical queues allow the server to distribute queueing information across several places in the file system.

You can specify alternate path names for the physical queue directories, as described in Specifying Alternate Paths for Physical Queues. By specifying alternate path names, you can distribute the load associated with delivering a message because the server can perform concurrent I/O operations. You can also reduce the overhead associated with large numbers of files accumulating in a single message queue.

Netscape Messaging Server stores logical queues across three physical queue directories: control, deferred, messages.

The control Directory

The control directory contains the information necessary to process messages in the active queue--the queue containing messages waiting to be processed for the first time.

When the server accepts a message, it logs an entry in the control directory. When the server is finished processing the message (the message has been delivered to the user's inbox, the message has been deferred, or the message has been relayed), the server logs another entry in the control directory.

The control directory entries contain references to files in the messages directory.

The deferred Directory

The deferred directory has zero or more subdirectories, which contain the control information for messages that have been deferred.

The deferred directory entries contain references to the files in the messages directory.

 The messages Directory

The messages directory contains the text (header and body) of all messages in the active and deferred queues. This directory contains one file per message.


Specifying Actions on Deferred Queues
You can specify whether to return messages to the sender, move messages to the active queue, or delete messages from the queue.

 To specify actions on a deferred message queue, go to the Queued Messages window:

  1. From Netscape Console, open the Messaging Server you want to configure.

  2. Click the Configuration tab and open the Services folder in the left pane.

  3. Open the SMTP folder and select Message Queue.

  4. Click the Queued Messages tab in the right pane.

  5. Select a queue from the list.

  6. Click the Select Action button.

  7. Select an action from the Queued Messages Action window and click OK.

  8. Click Save.
Command Line

See also mailq and processq.


Specifying Message Handling for Deferred Queues
You can specify how often deferred queues are processed and how long messages can remain in the deferred queue.

 You can enable requests for processing of deferred queues to limit the number of dial-up connections to your server. With deferred queue processing, when a client (in this case another MTA) connects to the server to send a message, it can also initiate processing of the deferred queue for the client domain. For more information, see Enabling Requests for Deferred Queue Processing (ETRN).

You can also perform actions on the queue from the command-line interface. For more information about the command-line utilities for managing the queue, see mailq and processq.

To specify message handling for deferred queues:

  1. From Netscape Console, open the Messaging Server you want to configure.

  2. Click the Configuration tab and open the Services folder in the left pane.

  3. Open the SMTP folder and select Message Queue.

  4. Click the Configuration tab in the right pane.

  5. To specify how often messages in the queue are processed, in the "Message queue process interval" field, type a number and, from the drop-down list, choose Second(s), Minute(s), or Hour(s).

  6. To specify how long messages can remain in the queue, in the "Maximum Message Queue Time" field, type a number, and from the drop-down list, choose Hour(s) or Day(s).

  7. Click Save.
Command Line

You can also set values at the command line as follows.

To specify how often messages in the queue are processed:

 
configutil -o service.smtp.deferredperiod -v value
To specify how long messages can remain in the queue:

 
configutil -o service.smtp.maxqueuetime -v value

Specifying Alternate Paths for Physical Queues
To specify an alternate path for queue storage, go to the Message Queue Configuration window:

  1. From Netscape Console, open the Messaging Server you want to configure.

  2. Click the Configuration tab and open the Services folder in the left pane.

  3. Open the SMTP folder and select Message Queue.

  4. Click the Configuration tab in the right pane.

  5. Click the Add button beside the "MTA Queue Path" field.

  6. Type a queue path and click OK.

  7. Click Save.
Command Line

You can also set this value at the command line as follows.

configutil -o service.smtp.altqueues -v queuepath

Interface Reference: SMTP Configuration
This section describes the Messaging Server interface elements that allow you to configure and execute the server's SMTP services. You access these elements through Netscape Console; see Managing Servers With Netscape Console for information on using Netscape Console to manage the Messaging Server and other Netscape servers.


SMTP System Tab
This SMTP System tab allows you to specify information about domains, authenticated SMTP, and delivery options. For more information, see also:

 The SMTP System tab has the following elements:

 Domains

Address completion domain. In this field, type the name of the DNS domain that will be used to complete a recipient address if the address does not contain a domain name.

Local domain. This field displays the mail domains handled by this MTA. You can add a domain or edit the contents of this field by clicking one of the following three buttons. Mail sent to an unknown recipient at any of these domains is bounced.

 Add. Click this button to open a window (see Local Domain Window) that allows you to add a new domain to the Local Domain field.

Edit. Click this button to open a window that allows you to edit the domain that is currently highlighted in the Local Domain field.

 Delete. Click this button to delete the domain that is currently highlighted in the Local Domain field.

 Authenticated SMTP

Allow password login. Check this box to allow authenticated SMTP.

Minimum cipher length for password encryption. From the drop-down list, choose the minimum cipher length for password encryption: 0, 40, or 128.

 Unix Delivery

Local mail delivery program. In this field, type the path of the Unix mail delivery program to which the Messaging Server should deliver mail for accounts with the Unix-delivery option enabled.

For more information about Unix delivery, see Delivering Mail to Unix Mail Folders.

Program Delivery (Unix)

Safe user ID for running programs. In this field, type the safe Unix user ID for running programs set up for the root account.

Safe group ID for running programs. In this field, type the safe Unix group ID for running programs set up for the root account. The safe Unix user ID should be a member of the safe group ID.

For more information about program delivery, see Delivering Mail to a Program.

Program Delivery (NT)

NT account to run program as. In this field, type the user ID for running programs as Administrator.

Password for this account. In this field, type the password for the NT Administrator account.

 Standard Buttons

Save. Click this button to save settings you have made in the SMTP System tab.

Reset. Click this button to reset the tab to the previously-saved settings.
Local Domain Window
The Local Domain window allows you to add a domain to the list of domains handled by this MTA or to edit a domain entry. For more information, see also:

 The Local Domain window has the following elements:

 Domain handled by this server exclusively. Type the domain name you want to add.

 OK. Click this button to add the domain to the list of local domains on the SMTP System tab.

Note that changes are not saved until you click Save on the SMTP System tab.

 Cancel. Click this button to cancel edits you've made to the Local Domain window.
SMTP Accept Tab
The SMTP Accept tab allows you to specify information about message delivery, address verification, host name resolution, the maximum number of MTA hops allowed, minimum free disk space, and whether the server allows various SMTP commands. For more information, see also:

 Defer delivery to remote hosts. Check this box to defer delivery to remote MTAs. If you check this option, the Messaging Server queues all outgoing mail and attempts delivery only when it processes the message queue.

Verify each recipient's address. Check this box if you want the Messaging Server to verify each address listed as a recipient. The Messaging Server returns an error for local addresses that are not found in the Directory Server.

Lookup client machine names. Check this box if you want the Messaging Server to perform host name resolution for all connecting client machines.

Maximum number of MTA hops. In this field, type the maximum number of times a message can be routed from one MTA to another. The recommended range for this parameter is 30 or more. The default number is 30.

 Minimum free disk space. In this field, type the minimum amount of disk space that should remain free. From the associated drop-down list, choose MBytes or KBytes. If disk space gets too low according to the value you specify, the server will reject messages temporarily.

Allow SMTP command `VRFY'. Check this box to enable the SMTP command for verifying a user name.

Allow SMTP command `EXPN'. Check this box to enable the SMTP command for verifying a mailing list. If both client and server support the EXPN command, clients can make requests to your server to verify that a particular mailing list resides on the server.

Allow SMTP command `ETRN'. Check this box to enable the SMTP command for enabling requests for deferred queue processing.

Allow SMTP command `SIZE'. Check this box if you want to enable client/server dialog about message size. Indicate the maximum size the message the server will accept by typing a number in the field beside the checkbox; from the associated drop-down list, choose MBytes or KBytes.

 Standard Buttons

Save. Click this button to save settings you have made in the SMTP Accept tab.

Reset. Click this button to reset the tab to the previously-saved settings.
SMTP Autoreply Tab
The SMTP Autoreply tab allows you to specify automatic reply messages for various situations. For more information, see also Specifying Automatic Reply Information.

The SMTP Autoreply tab has the following elements:

 Default vacation-mode reply message. In this field, type the vacation message that will be used if users do not write a personalized message. The MTA automatically sends this reply message for a user account whose vacation setting is activated. From the drop-down list, choose the language for the message.

 Default echo-mode reply message. In this field, type a generic message for users sending messages to this address. A common use of the echo feature is to return mail addressed to people who have moved on and left no forwarding address. From the drop-down list, choose the language for the message.

 Default reply-mode reply message. In this field, type a message that can be used to advise the sender to contact the server administrator. From the drop-down list, choose the language for the message.

 Save. Click this button to save settings you have made in the SMTP Autoreply tab.

 Reset. Click this button to reset the tab to the previously-saved settings.
SMTP Error Tab
The SMTP Error tab allows you to specify how the server should handle error messages for various error situations. For more information, see also Specifying Error Handling.

For each error situation, the SMTP Error tab has the following elements:

 Return message to sender. Check this box to return an error message to the sender of the message.

 Notify the postmaster via email. Check this box to notify the postmaster of the error via email.

Log the error in the log file. Check this box to log the error in the log file.

Save. Click this button to save settings you have made in the SMTP Error tab.

 Reset. Click this button to reset the tab to the previously-saved settings.
SMTP Address Tab
The SMTP Address tab allows you to specify options for envelope rewrite methods, "From" address rewrite style, alternate search methods, and SMTP routing table entries. For more information, see also:

 Note: You should shut down your server before specifying configuration changes in this tab.

 The SMTP Address tab has the following elements:

 Envelope Rewrite Methods

Use the mailRoutingAddress attribute. Check this box if you want the server to use a specific mail routing address for rewriting the message envelope. This method is most useful for LDAP entries that represent mail accounts on non-Netscape mail servers or gateway systems.

You must also modify the user's LDAP entry (for example, by using ldapmodify) to include the mailRoutingAddress attribute.

Combine the uid with the mailHost attribute. Check this box if you want the server to combine the uid attribute and the mailHost attribute found in the LDAP directory for rewriting the envelope address.

Combine the local part of the address with the mailHost attribute. Check this box if you want the server to combine the local part of the original address with the mailHost attribute value to create the new address.

From Address Rewrite Style

"john doe"<jdoe@example.com>. Choose this option to rewrite the address in the style indicated.

jdoe@example.com (John Doe). Choose this option to rewrite the address in the style indicated.

 jdoe@example.com. Choose this option if you want the server to try to complete an incomplete address.

 never rewrite addresses. Choose this option if you do not want the server to rewrite any part of the from address.

Alternate Search Methods

Search for custom domain. Check this box if you want the server to use the "custom domain" search method.

Search using truncated domain. Check this box if you want the server to use the "truncated domain" search method.

Search by user ID. Check this box if you want the server to use the "user ID" search method.

SMTP Routing Table

SMTP Routing table. This field displays SMTP routing table entries. You can edit the contents of this field by highlighting a line in this field and then clicking one of the following three buttons.

Add. Click this button to open a window (see SMTP Routing Entry Window) that allows you to add a new routing table entry.

Edit. Click this button to open a window that allows you to edit the routing table entry that is currently highlighted in the Routing table field.

 Delete. Click this button to delete the routing table entry that is currently highlighted in the Routing table field.

 Standard Buttons

Save. Click this button to save settings you have made in the SMTP Address tab.

Reset. Click this button to reset the tab to the previously-saved settings.
SMTP Routing Entry Window
The SMTP Routing Entry window allows you to add or edit routing table entries.

Routing table entry. In this field, type the routing table entry you want to add.

 Entries in the mail routing table are processed in order. You should keep this in mind when creating entries. For example, if you have a route entry that sends all non-local mail to a firewall mail server, you would want this entry to be the last entry in the routing table.

 OK. Click this button to add the entry to the list of entries on the SMTP Routing Table field in the SMTP Address tab.

 Note that changes are not saved until you click Save in the SMTP Address tab.

 Cancel. Click this button to cancel edits you've made to the Add Routing Table Entry window.


SMTP Access Tab
The SMTP Access tab allows you to control access to the SMTP service. For more information on this tab, see SMTP Access Tab in Chapter 6.


Queued Messages Tab
The Queued Messages tab allows you to view information about the active queue and deferred queues. You can specify actions on deferred queues; you cannot, however, specify actions on the active queue.

For more information, see also:

 The Queued Messages tab has the following elements:

 Queue List. The queue list shows the active queue and the deferred queues that currently exist on the server. For each queue, the queue list shows the name of the queue, the number of messages in the queue, and the actions specified for the queue. The active queue is the queue currently being processed by Messaging Server. There can be only one active queue.

Select Action. Click this button to open a window that allows you to specify an action on a particular deferred queue (see Queued Messages Action Window). You cannot select an action for the active queue.

Save. Click this button to start the actions specified in the Queued Messages Action tab on the queues.

 Reset. Click this button to reset the tab to the previously-saved settings.
Queued Messages Action Window
The Queued Messages Action window allows you to indicate an action to be performed on the selected deferred queue. You cannot specify an action on the active queue. For more information, see Specifying Actions on Deferred Queues.

The Queued Messages Action window has the following elements:

 Bounce. Click this option if you want return all messages in the queue to the sender.

 Delete. Click this option if you want to delete messages in the queue.

 Requeue. Click this option if you want to move messages in the queue to the active queue.

 OK. Click this button to add the action to the Queued Messages window.

 Note that the actions are not carried out until you click Save on the Queued Messages window.

 Cancel. Click this button to cancel selections you've made to the Queued Messages Action window.
Message Queue Configuration Tab
The Configuration tab allows you to specify alternate physical locations for queues and to specify handling information for the deferred logical queues. For more information, see also:

 The Configuration tab has the following elements:

 Alternate MTA Queues

Queue path. This field displays alternate MTA queue paths.

Add. Click this button to open a window (see Alternate MTA Queue Entry Window) that allows you to add a new queue path to the Queue path field.

Edit. Click this button to open a window that allows you to edit the queue path that is currently highlighted in the Queue path field.

 Delete. Click this button to delete the queue path that is currently highlighted in the Queue path field.

 Deferred Message Handling

Message queue process interval. In this field, type a number to indicate how often Messaging Server processes the deferred message queues. From the drop-down list, choose seconds, minutes, or hours.

Maximum message queue time. In this field, type a number to indicate the maximum time messages can remain in the deferred queue. From the associated drop-down list, choose hours or days. After this time, messages are deleted from the queue.


Alternate MTA Queue Entry Window
The Alternate MTA Queue Entry window allows you to add an alternate message queue path or to edit an existing path. For more information, see Specifying Alternate Paths for Physical Queues.

The Alternate MTA Queue Entry window has the following elements:

 Path name of the MTA queue. Type the path name of the alternate queue.

 OK. Click this button to add the path name to the list of alternative queues in the SMTP System tab.

 Note that changes are not saved until you click Save in the Message Queue Configuration tab.

 Cancel. Click this button to cancel edits you've made to the Add MTA Queue window.

 

© Copyright 1999 Netscape Communications Corp., a subsidiary of America Online, Inc. All rights reserved.