• If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
    CentOS2Alma discussion

securing qmail for open relay

ebudihar

New Pleskian
Right now,
I am looking for a way how to secure qmail from open relay and still sending and receiving without someone use my mail server to send any spams emails. What I have in the plesk 8.6 is just server>Mail>Relaying (closed, authorization is required: POP3 or SMTP). When I choose "closed", the mail server is totally closed relay and I cannot send any emails and sometimes I cannot receive emails. But if I choose the other, my email server will be open relay and someone can use it to send spams.

Do you mind if you can tell me how to secure the qmail to closed relay and I can still sending and receiving emails.

I am looking forward to a favorable reply from you. Thank you.


Regards,
Eko
 
Hi Eko,

You would normally have it set to "authorization is required", with only the SMTP tick box ticked.

This will NOT stop any email from being send to an email address that is configured in Plesk on your server.

It WILL stop spammers using your server as an open relay, as the only way to send email to addresses not on your server is by using SMTP authentication.

In your email program, you would need to configure a setting that looks something like "My outgoing (SMTP) server requires authentication", and you would need to give the email program the correct username and password for this authentication. These are exactly the same as for recieving email -- i.e. the FULL email address and password.

You may run into problems with authentication if you have Outlook 2007 or a Mac. In both cases there will be problems if you have put a tick in POP3 as well as SMTP box under "authorization is required" in Plesk, or have added the IP address of your internet connection in the White List section. In addition, if the IP address of your internet connection is blacklisted (which it might well be if you use, for example, zen.spamhaus.org in your DNS blackhole list, your connection attempt may also be prevented. You can get around this latter problem by enabling the "submission" port (587) in Plesk 8.3 (I think) and later, or by manually adding it.

I hope some of this helps. If not then maybe the problem you are having when enabling authentication is not quite what it seems, or I have misunderstood your problem.

Remember, enter the FULL email address as the username, not just the part before the @ when setting up your email program. Although Plesk does have a setting that allows you to just use the part before the @, it is best to use the whole thing.

Faris.
 
Back
Top