The 03.09.26 at 10:11, Darrell Cormier wrote:
Since we are again on this subject, and I know this has been addressed a great deal, but I am still a little fuzzy/confused about the whole email/network security approach.
Me too, sometimes :-)
I have been trying to read various articles found on the web but I'll admit I am a bit new to admin activities as well as apprehensive until I have a very thorough understanding of the approach.
It is much better that, than to be carefree.
I am currently just using Mozilla to access my ISPs mail server directly. This, I know is not a very good approach and I intend to change it once I have the process down pat.
Why? It is a good enough way. It is not the only way, not necessarily the best, nor the worst.
My understanding of a good approach follows:
1. Firewall (of course, although I have not gotten there yet) 2. postfix - setup and operational 3. antivirus software (I've heard recommended: F-prot, antivir, and clam antivirus. Comments on these appreciated) 4. SpamAssassin 5. Amavis
Antivirus is not necessary in Linux, but I also have it - at least, to know when I do get a contaminated email. But many of the newer viruses go undetected. Amavis is good, and can be used with several different antivirus programs. Then, unless you have your own domain, you also need fetchmail or equivalent (and probably procmail) to get mail from your ISP accounts.
And then make them all work together. Is this a good/safe approach?
Good, yes. Safe, probably... but what is safe on a permanent connection? -- Cheers, Carlos Robinson