Photo by Simon Moog on Unsplash
Secure email communication
Trustworthy
IT administrators, no matter their level of experience, agree that managing mail servers is one of the supreme disciplines. Too many fragile system settings, too many pitfalls, and above all, public pillories in the form of blacklists if something goes wrong during configuration. All the more respect goes to the admins who successfully manage mail servers, keep them permanently available, and ensure that outgoing email reaches the intended recipient reliably.
Microsoft in particular and the email service providers they control are considered particularly strict when it comes to accepting messages from third-party servers. Although some people claim that Microsoft is deliberately filtering third-party providers to boost the number of customers for its own services, this prejudice cannot be confirmed on closer inspection. Microsoft offers comprehensive information about blocking mail servers and recommendations for action on a website set up specifically for this purpose [1]. If you have the mail server under strict control, you do not need to worry about problems with delivery to Live, Hotmail, or Outlook servers.
In this article, I look at how to secure email with the Domain-based Message Authentication, Reporting, and Conformance (DMARC) email authentication protocol.
Secure Mail Dispatch
Even though spam filtering and malware detection when receiving email play a major role in corporate security, in this article, I only look at how to secure email transmission. Of course, the measures I will be looking at also indirectly contribute to the security of enterprise email accounts, as long as the other mail servers also use them. Because fake senders can be blocked even before email is received, the incoming spam volume is automatically reduced. The integration of corresponding tests for receiving mail servers is described in the
...
Buy this article as PDF
(incl. VAT)
Buy ADMIN Magazine
US / Canada
UK / Australia
Related content
-
Email sender verification with DMARC
DMARC retrofits email with sender verification and thus provides a useful tool for fighting spam. -
Hardening mail servers, clients, and connections
If you don't want to hand over your mail to a corporation, you have to operate your own mail server. Securing it sensibly involves some effort. -
Fast email server deployments with iRedMail
Setting up and maintaining an email service in the data center doesn't have to be a nightmare. The iRedMail open source solution lets you deploy a full-featured email server on a number of platforms in a matter of minutes. -
Hardening network services with DNS
The Domain Name System, in addition to assigning IP addresses, lets you protect the network communication of servers in a domain. DNS offers further hardening of network protocols – in particular, SSH fingerprinting and CAA records. -
An overview of the Citadel BBS
Citadel is a free, compact bulletin board system that integrates email, calendar, address book, and forum functions for administrators and hobbyists that need a groupware solution for a small organization.