Glossary

ACAP

Application Configuration Access Protocol. A protocol which enhances IMAP by allowing the user to set up address books, user options, and other data for universal access.

access control rules

Rules specifying user permissions for a given set of directory entries or attributes.

access control list

(ACL) A set of data associated with a directory that defines the permissions that users and/or groups have for accessing it.

Administration Console or Admin Console

A GUI (graphical user interface) which enables you to configure, monitor, maintain, and troubleshoot the SIMS components.

address mapping

See forward address mapping or reverse address mapping.

address token

The address element of a rewrite rule pattern.

Administration Services

A service daemon that administers components of SIMS through a GUI.

agent

In the client-server model, the part of the system that performs information preparation and exchange on behalf of a client or server application. See also MTA.

alias

An alternate name of an email address.

alias file

A file used to set aliases not set in a directory, such as the postmaster alias.

APOP

Authenticated Post Office Protocol. Similar to the Post Office Protocol (POP), but instead of using a plaintext password for authentication, it uses an encoding of the password together with a challenge string.

attribute

The form of information stored and retrieved by the directory service. Directory information consists of entries, each containing one or more attributes. Each attribute consists of a type identifier together with one or more values. Each directory read operation can retrieve some or all attributes from a designated entry.

attribute index

An index, or list, of entries which contains a given attribute or attribute value.

autoreply option file

A file used for setting options for autoreply, such as vacation notices.

backbone

The primary connectivity mechanism of a distributed system. All systems that have connectivity to an intermediate system on the backbone are connected to each other. This does not prevent you from setting up systems to bypass the backbone for reasons of cost, performance, or security.

bang path

An address for sending e-mail via UUCP that specifies the entire route to the destination computer. It separates each host name with an exclamation point, which is also known as a bang. For example, the bang path midearth!shire!bilbo!jsmith would go to the jsmith user account on the bilbo host, which is reached by first going to midearth and then shire.

CA

Certificate Authority. An organization that issues digital certificates (digital identification) and makes its public key widely available to its intended audience.

directory cache

A temporary storage of information that has been retrieved from the directory.

Certificate Authority

See CA.

channel

An interface with another SIMS component, another email system, or a mail user agent.

character set labels

A name or label for a character set.

client-server model

A computing model in which powerful networked computers provide specific services to other client computers. Examples include the name-server/name-resolver paradigm of the DNS and fileserver/file-client relationships such as NFS and diskless hosts.

composition

The process of constructing a message by the Mail User Agent (MUA). See also MUA.

configuration file

A file that contains the configuration parameters for a specific component of the SIMS system.

congestion thresholds

A disk space limit that can be set by the system administrator that prevents the database from becoming overloaded by restricting new operations when system resources are insufficient.

conversion channel

Converts body of messages from one form to another.

cookie

Cookies are text-only strings entered into the browser's memory automatically when you visit specific web sites. Cookies are programmed by the web page author. Users can either accept or deny cookies. Accepting the cookies allows the web page to load more quickly and is not a threat to the security of your machine.

ciphertext

Text which has been encrypted. Opposite of plaintext.

daemon

A UNIX program that is not invoked explicitly, but lies dormant waiting for some condition(s) to occur. The instigator of the condition need not be aware that a daemon is lurking (though often a program will commit an action only because it knows that it will implicitly invoke a daemon). Typical daemons are print spoolers, e-mail handlers, and schedulers that start up another process at a designated time or condition.

data store

A store that contains directory information, typically for an entire directory information tree.

DC tree

Domain Component tree. A directory information tree that mirrors the DNS network syntax. An example of a distinguished name in an DC tree would be cn=billbob,dc=bridge,dc=net,o=internet

defragmentation

The Multiple Internet Mail Extensions (MIME) feature that enables a large message that has been broken down into smaller messages or fragments to be reassembled. A Message Partial Content-Type header field that appears in each of the fragments contains information that helps reassemble the fragments into one message. See also fragmentation.

delegated administrator

A person who has the privileges to add, modify, delete, and search for group or user entries at a specified hosted domain.

Delegated Management Console

A web browser-based software console that allows delegated administrators to add and modify users and groups to a hosted domain. Also allows end users to change their password, set message forwarding rules, set vacation rules, and list distribution list subscriptions.

delegated management server

A daemon program that handles access control to the directory by hosted domains.

denial of service attack

A situation where an individual intentionally or inadvertently overwhelms your mail server by flooding it with messages. Your server's throughput could be significantly impacted or the server itself could become overloaded and nonfunctional.

dereferencing an alias

Specifying, in a bind or search operation, that a directory service translate an alias distinguished name to the actual distinguished name of an entry.

destination channel

The last element of a host/domain rewrite rule, in whose queue a message should be placed in for delivery.

directory cache

A cache containing the directory information used by the IMTA to deliver mail.

directory context

The point in the directory tree information at which a search begins for entries used to authenticate a user and password for Sun Message Store access.

directory entry

A set of directory attributes and their values identified by its distinguished name. Each entry contains an object class attribute that specifies the kind of object the entry describes and defines the set of attributes it contains. Also called the IMTA directory cache.

directory information tree

The tree-like hierarchical structure in which directory entries are organized. Also called a DIT. DITs can be organized along the DNS (DC trees) or Open Systems Interconnect networks (OSI trees).

directory schema

The set of rules that defines the data that can be stored in the directory.

directory service

A logically centralized repository of information. The component in SIMS that stores user, distribution list, and configuration data.

directory synchronization

Because information stored in the directory service is updated as new entries are added, modified and deleted, the information in the IMTA directory cache must be periodically updated with the current information in the directory service. This process is called directory synchronization. Sometimes called a dirsync in reference to the imta dirsync command.

dirsync option file

A file used to set options for the dirsync program which cannot be set through the command line.

disconnected state

The mail client connects to the server, makes a cache copy of selected messages, then disconnects from the server.

distinguished name

The comma-separated sequence of attributes and values that specify the unique location of an entry within the directory information tree. Often abbreviated as DN.

distribution list

A list of email addresses (users) that can be sent a message by specifying one email address. Also called a group. See also expansion, member, moderator, owner, and alias.

distribution list owner

An individual who is responsible for a distribution list. An owner can add or delete distribution list members. See also distribution list, expansion, member, and moderator.

DIT

See directory information tree.

DN

Distinguished name.

DNS

Domain Name System. A distributed name resolution software that allows computers to locate other computers on a UNIX network or the Internet by domain name. DNS servers provide a distributed, replicated, data query service for translating host names into Internet addresses.

DNS database

A database of domain names (host names) and their corresponding IP addresses.

domain

A group of computers whose host names share a common suffix, the domain name. Syntactically, an Internet domain name consists of a sequence of names (labels) separated by periods (dots), for example, tundra.mpk.ca.us.

domain quota

The amount of space, configured by the system administrator, allocated to a domain for email messages.

domain rewriting rules

See also rewrite rules.

domain template

The part of a rewrite rule that defines how the host/domain portion of an address is rewritten. It can include either a full static host/domain address or a single field substitution string, or both.

dsservd

A daemon that operates that accesses the database files that hold the directory information, and communicates with directory clients using the LDAP protocol.

EMAPI

Extended MAPI Service Provider. Transparently turns Microsoft Exchange client into an Internet standard IMAP/LDAP client. See also IMAP, LDAP.

encryption

Scrambling the contents of a message so that its contents cannot be read without the encryption, or code key.

entries

User, group, or organizational data used to configure message accounts.

envelope

The part of an Internet mail message that contains the delivery information. The envelope contains the originator and recipient information associated with a message.

ESMTP

Extended Simple Mail Transfer Protocol. An Internet message transport protocol.

expander

Part of an electronic mail delivery system which allows a message to be delivered to a list of addressees. Mail expanders are used to implement mailing lists. Users send messages to a single address (e.g., hacks@somehost.edu) and the mail expander takes care of delivery to the mailboxes in the list. Also called mail exploders.

expansion

This term applies to the IMTA processing of distribution lists. The act of converting a message addressed to a distribution list into enough copies for each distribution list member.

expunge

The act of marking a message for deletion and then permanently removing it from you INBOX.

external channel

An interface between the IMTA and either another SIMS component or another component outside the SIMS email system.

failover

The automatic transfer of a computer service from one system to another to provide redundant backup.

Filesharing Transport

This type of transport moves messages between the UNIX operating system and the PC running a client through a shared file system available to both platforms. When a channel is configured to use filesharing transport, the shared directory to use for the file exchange must be specified.

firewall

A dedicated gateway machine with special security precautions used to service outside network, especially Internet, connections and dial-in lines. The idea is to protect a cluster of more loosely administered machines hidden behind the firewall from unwanted entry from outside the firewall.

folder

Named place where mail is stored. Also called a mailbox. Inbox is a folder that stores new mail. Users can also have folders where mail can be stored. A folder can contain other folders in a hierarchical tree. Folders owned by a user are called private folders. See also shared folders.

Folder Check

A utility which checks the accessibility of messages and folders and verifies links. This utility is used as part of the regular maintenance of SIMS.

forward address mapping

Message envelopes, TO:address, are processed to a mapping table. The result of the mapping is tested. If necessary, the exact form of the envelope is exchanged for another which can then be processed by a different, and perhaps non-compliant RFC 822, mail system.

FQDN

See fully qualified domain name.

fragmentation

The Multiple Internet Mail Extensions (MIME) feature that allows the breaking up of a large message into smaller messages. See also defragmentation.

full static host/domain address

The portion of a host/domain address elements set off by decimals as part of the domain template. See also domain template.

fully qualified domain name

The full name of a system, consisting of its local host name and its domain name. For example, class is a host name and class.sun.edu is an fully qualified domain name. A fully qualified domain name should be sufficient to determine a unique Internet address for any host on the Internet. The same naming scheme is also used for some hosts that are not on the Internet, but share the same name-space for electronic mail addressing. A host which does not have a fully qualified domain name must be addressed using a bang path.

gateway

The terms gateway and application gateway refer to systems that do translation from one native format to another. Examples include X.400 to/from RFC 822 electronic mail gateways. A machine that connects two or more electronic mail systems (especially dissimilar mail systems on two different networks) and transfers messages between them. Sometimes the mapping and translation can be complex, and it generally requires a store-and-forward scheme whereby the message is received from one system completely before it is transmitted to the next system after suitable translations.

global log manager

A utility that handles log information from each Sun Internet Mail Server component.

group

Same as a distribution list.

group folders

These contain folders for shared and group folders. See shared folder.

header

The part of an Internet mail message that is composed of a field name followed by a colon and then a value. Headers include delivery information, summaries of contents, tracing, and MIME information.

hosted domain

An email domain that is outsourced by an ISP. That is, the ISP provides email domain hosting for an organization by operating and maintaining the email services for that organization. A hosted domain shares the same SIMS host with other hosted domains. In earlier LDAP-based email systems, a domain was supported one or more email server hosts. With SIMS, many domains can be hosted on a single server. Hosted domains are also called virtual hosted domains or virtual domains.

host name

The logical name assigned to a computer. On the Web, most hosts are named www; for example, www.mycompany.com. If a site is composed of several hosts, they might be given different names such as support.mycompany.com and sales.mycompany.com. support and sales are the host names, mycompany is the subdomain name, and com is the top-level domain name.

IMAP4

Internet Message Access Protocol. IMAP4 provides advanced disconnected mode client access.

IMTA

Internet Message Transfer Agent. IMTA routes, transports, and delivers Internet Mail messages within the email system.

internal channel

An interface between internal modules of the IMTA. Internal channels include the reprocessing, conversion, and defragmentation channels. These channels are not configurable.

Internet

A collection of networks interconnected by a set of routers that allow them to function as the largest single world-wide virtual network.

internet protocol address

A 32-bit address assigned to hosts using TCP/IP. Also called the IP address and internet address.

invalid user

An error condition that occurs during message handling. When this occurs, the message store sends a communication to the Internet Message Transport Agent (IMTA), the message store deletes its copy of the message. The IMTA bounces the message back to the sender and deletes its copy of the message.

ISP

Internet Service Provider. A company that provides internet services to its customers including email, electronic calendaring, access to the world wide web, and web hosting.

job controller

An IMTA daemon responsible for scheduling message delivery. Job controller also controls channel queues and determines the order of processing. Requests are processed in the order in which they are received by the system.

knowledge information

Part of the directory service infrastructure information. The directory server uses knowledge information to pass requests for information to other servers.

LDAP

Lightweight Directory Access Protocol. LDAP is a protocol used for the storage, retrieval, and distribution of information, including user profiles, distribution lists, and configuration data.

LDAP referrals

An LDAP entry that consists of a symbolic link (referral) to another LDAP entry. An LDAP referral consists of an LDAP host and a distinguished name. LDAP referrals are often used to reference existing LDAP data so that this data does not have to be replicated. They are also used to maintain compatibility for programs that depend on a particular entry that may have been moved.

LDAP Server

A software server that maintains an LDAP directory and services queries to the directory. The Sun Directory Services and the Netscape Directory Services are implementations of an LDAP Server.

LDAP server failover

A backup feature for LDAP servers. If one LDAP server fails, the system can switch over to another LDAP server.

LDAP filter

A way of specifying a set of entries, based on the presence of a particular attribute or attribute value.

LDBM

LDAP Data Base Manager.

LDIF

LDAP Data Interchange Format. A data format used to represent LDAP entries in text form.

local channel

A channel that allows you to determine delivery options of local users and delivers mail to Solaris Operating Environment mailboxes.

lookup

Same as a search, using the specified parameters for sorting data.

mailbox

A place where messages are stored and viewed. See folder.

managed object

A collection of configurable attributes, for example, a collection of attributes for the directory service.

mapping tables

Two column tables which transform, map, an input string into an output string.

master directory server

The directory server that contains the data that will be replicated.

master message catalog

Contains message catalogs for the SIMS components.

master program

A channel program that initiates a message transfer to another interface on its own.

member

A user or group who receives a copy of an email addressed to a distribution list. See also distribution list, expansion, moderator, and owner.

Message Access and Store

The SIMS components which store user messages and allow for retrieval and processing of messages.

Message Access Services

Consists of protocol servers, software drivers, and libraries which support client access to the message store.

message access services

The drivers and libraries that support client access to the SIMS message store.

message catalogs

The log messages, command line responses, and graphical user interface screen text contained in the SIMS components.

message submission

The client Mail User Agent (MUA) transfers a message to the mail server and requests delivery.

MIB

Management Information Base. A collection of objects that can be accessed via a network management protocol. See also SMI.

MIME

Multipurpose Internet Mail Extensions. A format for defining email message content.

moderator

A person who first receives all email addressed to a distribution list before A) forwarding the message to the distribution list, B) editing the message and then forwarding it to the distribution list, or C) not forwarding the message to the distribution list. See also distribution list, expansion, member, and owner.

MTA

Message Transfer Agent. An OSI application process used to store and forward messages in the X.400 Message Handling System. Equivalent to Internet mail agent. See IMTA.

MUA

Mail User Agent. The client applications invoked by end users to read, submit, and organize their electronic mail.

mx record

Mail Exchange Record. A DNS resource record stating a host that can handle electronic mail for a particular domain.

name resolution

The process of mapping an IP address to the corresponding name. See also DNS.

namespace

The space from which an object name is derived and understood. Files are named within the file namespace, domain components are named within the domain namespace.

naming attribute

The final attribute in a directory information tree distinguished name. See also relative distinguished name.

naming context

A specific subtree of a directory information tree that is identified by its DN. In SIMS, specific types of directory information are stored in naming contexts. For example, a naming context which stores all entries for marketing employees in the XYZ Corporation at the Boston office might be called ou=mktg, ou=Boston, o=XYZ, c=US.

NIS

A distributed network information service containing key information about the systems and the users on the network. The NIS database is stored on the master server and all the replica or slave servers.

NIS+

A distributed network information service containing hierarchical information about the systems and the users on the network. The NIS+ database is stored on the master server and all the replica servers.

nondelivery report

During message transmission, if the IMTA does not find a match between the address pattern and a rewrite rule, the IMTA sends a nondelivery report back to the sender with the original message.

notary messages

Text messages sent by the MTA to an email sender indicating delivery or non-delivery status of a sent message.

object class

A template specifying the kind of object the entry describes and the set of attributes it contains. For example, SIMS specifies an emailPerson object class which has attributes such as commonname, mail (email address), mailHost, and mailQuota.

off-line state

The mail client fetches messages from a server system to a client system, which may be a desktop or portable system and may delete them from the server. The mail client downloads the messages where they can be viewed and answered.

on-line state

A state in which messages remain on the server and are remotely responded to by the mail client.

option files

IMTA option files contain global parameters used to override default values of parameters which apply to IMTA as a whole, such as sizes for various tables into which various configuration and alias files are read.

OSI tree

A directory information tree that mirrors the Open Systems Interconnect network syntax. An example of a distinguished name in an OSI tree would be cn=billt,o=bridge,c=us

permanent failure

An error condition that occurs during message handling. When this occurs, the message store deletes its copy of an email message. The Internet Message Transport Agent (IMTA) bounces the message back to the sender and deletes its copy of the message.

pipe channel

A channel which performs delivery of messages via a per-user-site-supplied program. These programs must be registered in SIMS by the system administrator, and thus do not pose a security risk.

plaintext

Unencrypted readable text. The opposite of cypher text

plaintext authentication

Authentication that occurs by sending passwords over the network in plaintext. Considered a security problem since plaintext passwords can be easily captured over a network.

POP

Post Office Protocol. POP provides remote access support for older mail clients.

populating the directory

Entering information for users and distribution lists to the SIMS directory service.

protocol

A formal description of messages to be exchanged and rules to be followed for two or more systems to exchange information.

provisioning

The process of adding, modifying or deleting entries in the SIMS directory service. These entries include users and groups.

provisioning commands

SIMS commands that provide provisioning functions. These commands are prefaced with imadmin.

proxy

The mechanism whereby one system "fronts for" another system in responding to protocol requests. Proxy systems are used in network management to avoid having to implement full protocol stacks in simple devices, such as modems.

public key encryption

A cryptographic method that uses a two-part key (code) that is made up of public and private components. To encrypt messages, the published public keys of the recipients are used. To decrypt the messages, the recipients use their unpublished private keys known only to them.

purge

The process of permanently removing messages that have been deleted and are no longer referenced in user and group folders and returning the space to the Sun Message Store file system. See also backup and restore.

quota

See user quota.

referral

A process by which the directory server returns an information request to the client that submitted it, with information about the Directory Service Agent (DSA) that the client should contact with the request. See also knowledge information.

relaying

A message is passed from one mail server to another mail server.

relative distinguished name

The final attribute and its value in the attribute and value sequence of the distinguished name. See also distinguished name.

replica directory server

The directory that will receive a copy of all or part of the data.

reprocessing channel

Performs deferred processing. The reprocessing channel is the intersection of all other channel programs. It performs only the operations that are shared with other channels.

restore

The process of restoring the contents of folders from a backup device to the Sun Message Store. See also backup and purge.

reverse address mapping

Addresses are processed to a mapping table, with a reversal database, generally substituting a generic address, possibly on a central machine, for an address on a remote or transitory system.

rewrite rules

Also known as domain rewriting rules. A tool that the Internet Mail Transport Agent (IMTA) uses to route messages to the correct host for delivery. Rewrite rules perform the following functions: (1) extract the host/domain specification from an address of an incoming message, (2) match the host/domain specification with a rewrite rule pattern, (3) rewrite the host/domain specification based on the domain template, and (4) decide which IMTA channel queue the message should be placed in.

RFC

Request For Comments. The document series, begun in 1969, describes the Internet suite of protocols and related experiments. Not all (in fact very few) RFCs describe Internet standards, but all Internet standards are published as RFCs. See http://www.imc.org/rfcs.html.

root entry

The first entry of the directory information tree (DIT) hierarchy.

router

A system responsible for determining which of several paths network traffic will follow. It uses a routing protocol to gain information about the network, and algorithms to choose the best route based on several criteria known as "routing metrics." In OSI terminology, a router is a Network Layer intermediate system. See also gateway.

routability scope

Specifications which enable the IMTA to send messages by the most direct route, either to a specific user's folder, a group of folders, or to a mail host.

routing

In an email system, the act of delivering a message based on addressing information extracted from the body of the message. The Internet Message Transfer Agent (IMTA) is the component responsible for routing messages.

safe file system

A file system performs logging such that if a system crashes it is possible to rollback the data to a pre-crash state and restore all data. An example of a safe file system is Veritas File System, VxFS.

schema

A set of rules which sets the parameters of the data stored in a directory. It defines the type of entries, their structure and their syntax.

sendmail

This program acts as a mail transport agent for Solaris software. It is responsible for routing mail and resolution of mail addresses.

shared folder or shared mailbox

A mailbox that can be viewed by members of a distribution list. Shared folders have an owner who can add or delete members to the group and can delete messages from a the shared folder. The can also have a moderator who can edit, block, or forward incoming messages.

SIMS administrator

An individual who has a valid log in and password for the SIMS Admin Console. This person can also use this log in and password to execute the provisioning CLIs.

single field substitution string

Part of the domain template that dynamically rewrites the specified address token of the host/domain address. See also domain template.

SKIP

Simple Key management for IP. A security system that encrypts or scrambles the text of a message so only the receiving mail client or message server can decrypt or unscramble the text.

slave program

A channel program that accepts transfers initiated by another interface.

smart host

The mail server in a domain to which other mail servers, forward messages if they do not recognize the recipients.

SMTP

Simple Mail Transfer Protocol. The Internet electronic mail protocol. Defined in RFC 821, with associated message format descriptions in RFC 822.

SMTP Dispatcher

A multithreaded connection dispatching agent which allows multiple multithreaded servers to share responsibility for a given service, thus allowing several multithreaded SMTP servers to run concurrently and handle one or more active connections.

SMTP intranet or internet channel

A channel dedicated to relaying messages between the IMTA and a group of SMTP hosts within, or outside of, your mail network.

SMTP router channel

SMTP channel that handles messages between the IMTA and firewall host.

SNMP

Simple Network Management Protocol. The network management protocol of choice for TCP/IP-based internets.

subordinate reference

The naming context that is a child of the naming context held by your directory server. See also knowledge information.

Sun Directory Services

Sun Microsystems' implementation of an LDAP directory server. Provides storage of, and access to, user profiles, distribution lists, and other SIMS information. The Sun Directory Services is one of the three main SIMS components along with the IMTA and MS/MA.

Sun Internet Mail Server

An enterprise-wide, open-standards based, scalable electronic message- handling system.

Sun Message Store

The server from which mail clients retrieve and submit messages.

SSL

Secure Sockets Layer is an open, non-proprietary security protocol for authenticated and encrypted communication between clients and servers.

synchronization

The update of data by a master directory server to a replica directory server.

table lookup

With a table consisting of two columns of data, an input string is compared with the data within the table and transformed to an output string.

tailor file

An option file used to set the location of various IMTA components.

transient failure

An error condition that occurs during message handling. The remote Internet Message Transport Agent (IMTA) is unable to handle the message when it's delivered, but may be able to later. The local IMTA returns the message to the channel queue and schedules it for retransmission at a later time.

transport protocols

Provides the means to transfer messages between message stores.

uid

User identification. A unique string identifying a user to a system. Also referred to as a userid.

unsafe file system

A file system that does not perform logging. If the system crashes, the state cannot be recreated and some data may be lost. You must also perform imcheck before activating message access to these files.

upper reference

Indicates the directory server that holds the naming context above your directory server's naming context in the directory information tree (DIT).

user entry or user profile

Fields that describe information about each user, required and optional, examples are: distinguished name, full name, title, telephone number, pager number, login name, password, home directory, etc.

user folders

A user's email mailboxes.

user quota

The amount of space, configured by the system administrator, allocated to a user for email messages.

user redirection

The remote Internet Message Transport Agent (IMTA) cannot accept mail for the recipient, but can reroute the mail to a mail server that can accept it.

UUCP

UNIX to UNIX Copy Program. A protocol used for communication between consenting UNIX systems.

valid user

A condition that occurs during message handling. After the message store sends a communication to the Internet Message Transport Agent (IMTA), the IMTA deletes its copy of the message and it is now the message store's responsibility.

/var/mail

The UNIX version 7 "From" delimited mailbox as implemented in the Solaris operating system.

virtual hosted domains or virtual domains

See hosted domains.

workgroup

Local workgroup environment, where the server performs its own routing and delivery within a local office or workgroup. Interdepartmental mail is routed to a backbone server. See also backbone.

X.400

A message handling system standard.