An-Ti Spam On Zimbra

MC LC
Hnh 1.1 : S tng quan h thng th in t.........................6 Hnh 1.2 : Hot ng ca POP v SMTP....................................10 Hnh 1.3 : Hot ng ca POP v SMTP....................................14 Hnh 1.4 : Qu trnh gi th t A ti B.......................................16 Hnh 1.5 .M hnh hot ng ca my ch th in t.............27 Hnh 1.6 : Qun tr my ch t xa...............................................31 Hnh 2.1 : M hnh Eavesdropping..............................................37 Hnh 3.1 : M hnh DNS Blacklist................................................48 Hnh 3.2 : M hnh SURBL List...................................................49 Hnh 3.3 : M hnh Check Address..............................................50 Hnh 3.4 : M hnh Chn IP.........................................................51 Hnh 3.5 : M hnh B lc Bayesian.............................................51 Hnh 3.6 : M hnh Check Address..............................................52 Hnh 3.7 : M hnh Check Header...............................................53 Hnh 3.8 : M hnh Challenge/Response.....................................54 Hnh 4.1: Quy trnh chuyn th ca SpamAssassin...................65 Hnh 4.2: S lc th rc ca SpamAssassin...........................76 Hnh 4.3. M hnh trin khai tng quan......................................80 Hnh 4.4 : M hnh trin khai chi tit..........................................80 KT LUN....................................................................................81 TI LIU THAM KHO.............................................................82
PH LC.......................................................................................83 DANH MC K HIU,CH VIT TT
Vit tt MUA MTA Spam Spammer Ham Email Spool Header Server Client Internal External ISP DNS Domain SMTP
Ting Anh Mail User Agent Mail Transfer Agent Shoulder Pork and hAM Spammer Ham Electronic Mail Spool Header Server Client Internal Network External Network Internet Service Provider Domain Name System Domain
Ting Vit My khch th in t My ch th in t Th rc Ngi gi th rc Th khng phi th rc Th in t ng vn chuyn th in t Phn u ca th My ch My khch Mng ni b Mng bn ngoi Nh cung cp dch v H thng phn gii tn min Min
Simple Mail Transfer Protocol Giao thc truyn ti th n gin
DANH MC CC HNH Hnh 1.1 : S tng quan h thng th in t.........................6 Hnh 1.2 : Hot ng ca POP v SMTP....................................10 Hnh 1.3 : Hot ng ca POP v SMTP....................................14 Hnh 1.4 : Qu trnh gi th t A ti B.......................................16 Hnh 1.5 .M hnh hot ng ca my ch th in t.............27 Hnh 1.6 : Qun tr my ch t xa...............................................31 Hnh 2.1 : M hnh Eavesdropping..............................................37 Hnh 3.1 : M hnh DNS Blacklist................................................48 Hnh 3.2 : M hnh SURBL List...................................................49 Hnh 3.3 : M hnh Check Address..............................................50 Hnh 3.4 : M hnh Chn IP.........................................................51 Hnh 3.5 : M hnh B lc Bayesian.............................................51 Hnh 3.6 : M hnh Check Address..............................................52 Hnh 3.7 : M hnh Check Header...............................................53 Hnh 3.8 : M hnh Challenge/Response.....................................54 Hnh 4.1: Quy trnh chuyn th ca SpamAssassin...................65 Hnh 4.2: S lc th rc ca SpamAssassin...........................76 Hnh 4.3. M hnh trin khai tng quan......................................80 Hnh 4.4 : M hnh trin khai chi tit..........................................80
CHNG I. KHI NIM CHUNG V H THNG TH IN T

1.1. Gii thiu th in t. 1.1.1. Khi nim th in t. gi mt bc th, thng thng ta c th mt mt vi ngy vi mt bc th gi trong nc v nhiu thi gian hn gi bc th ra nc ngoi. Do , tit kim thi gian v tin bc ngy nay nhiu ngi s dng th in t.Th in t c gi ti ngi nhn rt nhanh, d dng v r hn nhiu so vi th truyn thng. Vy th in t l g ? ni mt cch n gin, th in t l l mt thng ip gi t my tnh ny n mt my tnh khc trn mng my tnh mang ni dung cn thit t ngi gi n ngi nhn. Do th in t gi qua li trn mng v s dng tn hiu in v vy tc truyn rt nhanh. Th in t cn c gi tt l E-Mail(Electronic Mail). E-Mail c nhiu cu trc khc nhau tu thuc vo h thng my tnh ca ngi s dng.Mc d khc nhau v cu trc nhng tt c u c mt mc ch chung l gi hoc nhn th in t t mt ni ny n mt ni khc nhanh chng. Ngy nay, nh s pht trin ca Internet ngi ta c th gi in th ti cc quc gia trn ton th gii.Vi li ch nh vy nn th in t hu nh tr thnh mt nhu cu cn phi c ca ngi s dng my tnh.Gi s nh bn ang l mt nh kinh doanh nh v cn phi bn hng trn ton quc.Vy lm th no bn c th lin lc c vi khch hng mt cch nhanh chng v d dng.Th in t l cch gii quyt tt nht v n tr thnh mt dch v ni ting trn Internet. Ti cc nc tin tin cng nh cc nc ang pht trin, cc trng i hc, cc t chc thng mi, cc c quan chnh quyn . u v ang kt ni h thng my tnh ca h vo Internet vic chuyn th in t nhanh chng v d dng. 1.1.2. Li ch ca th in t.
Th in t c rt nhiu cng dng v chuyn nhanh chng v s dng d dng. Mi ngi c th trao i kin, ti liu vi nhau trong thi gian ngn.Th in t ngy cng ng mt vai tr quan trng trong i sng, khoa hc, kinh t, x hi, gio gic, v an ninh quc gia. Ngy nay ngi tao trao i vi nhau hng ngy nhng kin, ti liu bng in th mc d cch xa nhau hng ngn cy s. V th in t pht trin da vo cu trc ca Internet cho nn cung vi s pht trin ca Internet, th in t ngy cng ph bin trn ton th gii. Ngi ta khng ngng tm cch khai thc n mc ti a v s hu dng ca n. Th in t pht trin s c b sung thm cc tnh nng sau : Mi bc th in t s mang nhn dng ngi gi. Nh vy ngi gi s bit ai gi th cho mnh mt cch chnh xc. Ngi ta s dng th in t gi th vit bng tay. C ngha l ngi nhn s c th in m ngi gi vit bng tay. Thay v gi l th in bng ch, ngi gi c th dng in th gi ting ni. Ngi nhn s lng nghe c ging ni ca ngi gi khi nhn c th. Ngi gi c th gi mt cun phim hoc l nhng hnh nh lu ng cho ngi nhn. Nhng tr ngi ln nht hin gi l ng truyn ti tn hiu ca Internet cn chm cho nn kh c th chuyn ti s lng ln cc tn hiu. Ngoi ra cn tr ngi khc nh my tnh khng sc cha hay x l ht tt c tn hiu m n nhn c.V th gn y ngi ta bt u xy dng nhng ng truyn ti tc cao cho Internet vi lu lng nhanh gp trm ln so vi ng c. Hy vng rng vi tin trin nh vy, mi ngi trn Internet s c thm c nhiu li ch t vic s dng in th. 1.2. Kin trc v hot ng ca h thng th in t. 1.2.1.Nhng nhn t c bn ca h thng th in t. Hu ht h thng th in t bao gm ba thnh phn c bn l MUA, MTA v MDA.
Hnh 1.1 : S tng quan h thng th in t. 1.2.1.1 MTA(Mail transfer Agent) : Khi cc bc th c gi n t MUA. MTA c nhim v nhn din ngi gi v ngi nhn t thng tin ng gi trong phn header ca th v in cc thng tin cn thit vo header. Sau MTA chuyn th cho MDA chuyn n hp th ngay ti MTA, hoc chuyn cho Remote-MTA. Vic chuyn giao cc bc th c cc MTA quyt nh da trn a ch ngi nhn tm thy trn phong b. Nu n trng vi hp th do MTA (Local-MTA) qun l th bc th c chuyn cho MDA chuyn vo hp th. Nu a ch gi b li, bc th c th c chuyn tr li ngi gi. Nu khng b li nhng khng phi l bc th ca MTA, tn min c s dng xc nh xem Remote-mta no s nhn th, theo cc bn ghi MX trn h thng tn min (chng ta s i su vo cc khi nim DNS v tn min trong cc mc pha sau). Khi cc ghi MX xc nh c Remote-MTA qun l tn min th khng c ngha l ngi nhn thuc Remote-MTA. M Remote-MTA c th n gin ch trung chuyn (relay) th cho mt MTA khc, c th nh tuyn bc th cho a ch khc nh vai tr ca mt dch v domain o(domain
gateway) hoc ngi nhn khng tn ti v Remote-MTA s gi tr li cho MUA gi mt cnh bo. 1.2.1.2 MDA (Mail Delivery Agent) : L mt chng trnh c MTA s dng y th vo hp th ca ngi dng. Ngoi ra MDA cn c kh nng lc th, nh hng th... Thng l MTA c tch hp vi mt MDA hoc mt vi MDA. 1.2.1.3 MUA (Mail User Agent) : MUA l chng trnh qun l th u cui cho php ngi dng c th c, vit v ly th v t MTA. MUA c th ly th t mail server v x l(s dng giao thc POP) hoc chuyn th cho mt MUA khc thng qua MTA (s dng giao thc SMTP). Hoc MUA c th x l trc tip th ngay trn mail server (s dng giao thc IMAP). ng sau nhng cng vic vn chuyn th chc nng chnh ca MUA l cung cp giao din cho ngi dng tng tc vi th, gm c : Son tho, gi th. Hin th th, gm c cc file nh km. Gi tr hay chuyn tip th. Gn cc file vo cc th gi i (Text,HTML, MIME.v.v). Thay i cc tham s(v d nh server c s dng, kiu hin th th, kiu m ho th.v.v). Thao tc trn cc th mc th a phng v u xa. Cung cp s a ch th (danh b a ch). Lc th. 1.2.2. Gii thiu v giao thc POP v IMAP. 1.2.2.1 POP ( Post Office Protocol). POP cho php ngi dng c account ti my ch th in t kt ni vo v ly th v my tnh ca mnh, c th c v tr li li. POP c pht trin u tin vo nm 1984 v c nng cp t bn POP2 ln POP3 vo nm 1988. V hin nay hu ht ngi dng s dng tiu chun POP3 POP3 kt ni trn nn TCP/IP n my ch th in t (s dng giao thc TCP cng mc nh l 110). Ngi dng in username v
password. Sau khi xc thc u my khch s s dng cc lnh ca POP3 ly v xo th. POP3 ch l th tc ly th trn my ch th in t v MUA. POP3 c quy nh bi tiu chun RFC 1939. Lnh ca POP3 : Bng 1 : Lnh ca POP3 Lnh User Pass Star List Retr Dele Noop Rset Quit Miu t Xc nh username Xc nh password Yu cu v trng thi ca hp th nh s lng th v ln th Hin danh sch ca th Nhn th Xo mt bc th xc nh Khng lm g c Khi phc li nhng th xo(rollback) Thc hin vic thay i v thot ra
1.2.2.2 IMAP (Internet Mail Access Protocol) : Th tc POP3 l mt th tc rt c ch v s dng rt n gin ly th v cho ngi dng. Nhng s n gin cng em n vic thiu mt s cng dng cn thit. V d : POP3 ch lm vic vi ch offline c ngha l th c ly s b xa trn server v ngi dng ch thao tc v tc ng trn MUA. IMAP th h tr nhng thiu st ca POP3. IMAP c pht trin vo nm 1986 bi trng i hc Stanford. IMAP2 pht trin vo nm 1987. IMAP4 l bn mi nht ang c s dng v n c cc t chc tiu chun Internet chp nhn vo nm 1994. IMAP4 c quy nh bi tiu chun RFC 2060 v n s dng cng 143 ca TCP. IMAP h tr hot ng ch online, offline hoc disconnect. IMAP cho php ngi dng tp hp cc th t my ch, tm kim v ly message cn ngay trn my ch, ly th v MUA m th khng b xo trn my ch. IMAP cng cho php ngi dng chuyn th t th mc ny ca
my ch sang th mc khc hoc xo th. IMAP h tr rt tt cho ngi dng hay phi di chuyn v phi s dng cc my tnh khc nhau. Lnh ca IMAP4 : Bng 2 : Lnh ca IMAP4. Lnh Miu t Capability Yu cu danh sch cc chc nng h tr Authenticate Xc nh s dng cc thc t mt server khc Login Cung cp username v password Select Chn hp th Examine in hp th ch c php c Create To hp th Delete Xo hp th Rename i tn hp th Subscribe Thm vo mt list ang hot ng Unsubscribe Di khi list ang hot ng List Danh sch hp th Lsub Hin danh sch ngi s dng hp th Status Trng thi ca hp th (s lng th,...) Append Thm message vo hp th Check Yu cu kim tra hp th Close Thc hin xo v thot khi hp th Expunge Thc hin xo Search Tm kim trong hp th tm message xc nh Fetch Tm kim trong ni dung ca message Store Thay i ni dung ca message Copy Copy message sang hp th khc Noop Khng lm g Logout ng kt ni So snh POP3 v IMAP4 : C rt nhiu im khc nhau gia POP3 v IMAP4. Ph thuc vo ngi dng, MTA v s cn thit, c th s dng POP3,IMAP4 hoc c hai. Li ch ca POP3 l : Rt n gin. c h tr rt rng. Bi rt n gin nn POP3 c rt nhiu gii hn. V d n ch h tr s dng mt hp th v th s c xo khi my ch th in t khi ly v. IMAP4 c nhng li ch sau : H tr s dng nhiu hp th
c bit h tr cho cc ch lm vic online, offline, hoc khng kt ni. Chia s hp th gia nhiu ngi dng. Hot ng hiu qu c trn ng kt ni tc thp. 1.2.3. Gii thiu v giao thc SMTP. Vic pht trin cc h thng th in t (Mail System) i hi phi hnh thnh cc chun chung v th in t. c hai chun v th in t quan trng nht v c s dng t trc n nay l X.400 v SMTP (Simple Mail Transfer Protocol). SMTP thng i km vi chun POP3. Mc ch chnh ca X.400 l cho php cc E-mail c th c truyn nhn thng qua cc loi mng khc nhau bt chp cu hnh phn cng, h iu hnh mang, giao thc truyn dn c dng. Cn chun SMTP miu t cch iu khin cc thng ip trn mng Internet. iu quan trng ca chun SMTP l gi nh MTA hoc MUA gi th phi dng giao thc SMTP gi th in t cho mt MTA nhn th cng s dng SMTP. Sau , MUA s ly th khi no h mun dng giao thc POP ( Post Office Protocol). Ngy nay POP c ci tin thnh POP3 ( Post Office Protocol version3).
Hnh 1.2 : Hot ng ca POP v SMTP. Th tc chun trn Internet nhn v gi ca th in t l SMTP (Simple Mail Transport Protocol). SMTP l th tc pht trin mc ng
dng trong m hnh 7 lp OSI cho php gi bc in trn mng TCP/IP. SMTP c pht trin vo nm 1982 bi t chc IETF ( Internet Engineering Task Fonce) v c chun ho theo tiu chun RFCS 821 v 822. SMTP s dng cng 25 ca TCP. Mc d SMTP l th tc gi v nhn th in t ph bin nht nhng n vn cn thiu mt s c im qun trong c trong th tc X400. Phn yu nht ca SMTP l thiu kh nng h tr cho cc bc in khng phi dng text. Ngoi ra SMTP cng c kt hp thm hai th tc khc h tr cho vic ly th l POP3 v IMAP4. MIME v SMTP : MIME ( Multipurpose Internet Mail Extensions ) cung cp thm kh nng cho SMTP v cho php cc file c dng m ho a phng tin (Multimedia) i km vi bc in SMTP chun. SMTP yu cu ni dung ca th phi dng 7 bit ASCII. Tt c cc dng d liu khc phi c m ha v dng m ASCII. Do MIME c pht trin h tr SMTP trong vic m ha d liu chuyn v dng ASCII v ngc li. Mt th khi gi i c SMTP s dng MIME nh dng li v dng ACSII v ng thi phn header c in thm cc thng s ca nh dng ( nh trn hnh 1.3) cho php u nhn th c th nh dng tr li dng ban u ca bc in. MIME l mt tiu chun h tr bi hu ht cc ng dng hin nay. MIME c quy chun trong cc tiu chun RFC 2045-2094. Lnh ca SMTP :SMTP s dng mt cch n gin cc cu lnh ngn iu khin bc in .Bng danh sch cc lnh ca SMTP c xc nh trong tiu chun RFC 821. Bng 3 : Lnh ca SMTP
Lnh Hello
Mall Rcpt Data
M t Hello. S dng xc nh ngi gi in. Lnh ny i km vi tn ca host gi in. Trong ESTMP (extended protocol), th lnh ny s l EHLO. Khi to mt dao dch gi th. N kt hp from xc nh ngi gi th. Xc nh ngi nhn th. Thng bo bt u ni dung thc s ca bc in ( phn thn ca th). D liu c m thnh dng m 128-bit ASCII v n c kt thc vi mt dng n cha du (.) M t Hu b giao dch th. S dng xc thc ngi nhn th. N l lnh no operation xc nh khng thc hin hnh ng g. Thot khi tin trnh kt thc. Cho host nhn bit rng th cn phi gi n u cui khc .
Lnh Rset Vrfy Noop Quit Send
M trng thi ca SMTP : Khi mt MTA gi mt lnh SMTP ti MTA nhn th MTA nhn s tr li vi mt m trng thi cho ngi gi bit ang c vic g xy ra ti u nhn. V di y l bng m trng thi ca SMTP theo tiu chun RFC 821. Mc ca trng thi c xc nh bi s u tin ca m (5xx l li nng, 4xx l li tm thi ,1xx-3xx l hot ng bnh thng ). SMTP m rng(Extended SMTP) : SMTP th c ci tin ngy cng p ng nhu cu cao ca ngi dng v l mt th tc ngy cng c ich. Nhng d sao cng co s m rng tiu chun SMTP, v chun RFC 1869 ra i b sung cho SMTP. N khng ch m rng m cn thm cc tnh nng cn thit cho cc lnh c sn. V d: lnh SIZE l lnh m rng cho php nhn gii hn ln ca bc in n. Khng c ESMTP th s khng gii hn c ln ca bc th. Khi h thng kt ni vi mt MTA, n s s dng khi to th ESMTP thay HELO bng EHLO. Nu MTA c h tr SMTP m rng (ESMTP)th n
s tr li vi mt danh sch cc lnh m n s h tr. Nu khng n s tr li vi m lnh sai (500 command not recognized) v host gi s quay tr v s dng SMTP. Cc lnh c bn ca ESMTP : Bng 4 : Lnh ca ESMTP Lnh Ehlo 8bitmime Size Miu t S dng ESMTP thay cho HELO ca SMTP S dng 8-bit MIME cho m d liu S dng gii hn ln ca bc in
SMTP Headers : C th ly c rt nhiu thng tin c ch bng cch kim tra phn Header ca th. Khng ch xem c bc in t u n, ch ca th, ngy gi v nhng ngi nhn. Bn cn c th xem c nhng im m bc in i qua trc khi n hp th ca bn. Tiu chun RFC 822 quy nh header cha nhng g. Ti thiu c ngi gi (from), ngy gi v ngi nhn (TO, CC, hoc BCC). Cc u im v nhc im ca SMTP : u im: SMTP rt ph bin. N c h tr bi nhiu t chc. SMTP c gi thnh qun tr v duy tr thp. SMTP c cu trc a ch n gin. Nhc im : SMTP thiu mt s chc bo mt (SMTP thng gi di dng text do c th b c trm - phi b sung thm cc tnh nng v m ha d liu S/MIME). H tr nh dng d liu yu (phi chuyn sang dng ASCII s dng MINE). N ch gii hn vo nhng tnh nng n gin. (Nhng cng l mt u im do ch gii hn nhng tnh nng n gin nn n s lm vic hiu qu v d dng). 1.2.4. ng i ca th.
Mi mt bc th truyn thng phi i n cc bu cc khc nhau trn ng n vi ngi dng. Tng t th in t cng chuyn t my ch th in t ny (mail server) ti my ch th in t khc trn Internet. Khi th c chuyn ti ch th n c cha ti hp th in t ti my ch th in t cho n khi n c nhn bi ngi nhn. Ton b qu trnh xy ra trong vi pht, do n cho php nhanh chng lin lc vi mi ngi trn ton th gii mt cch nhanh chng ti bt c thi im no d ngy hay m. Gi, nhn v chuyn th : nhn c th in t th bn cn phi c mt ti khon (account) th in t. Ngha l bn phi c mt a ch nhn th. Mt trong nhng thun li hn vi th thng thng l bn c th nhn th in t bt c u. Bn ch cn kt ni vo my ch th in t ly th v my tnh ca mnh. gi c th bn cn phi c mt kt ni vo Internet v truy nhp vo my ch th in t chuyn th i. Th tc tiu chun c s dng gi th l SMTP (Simple Mail Transfer Protocol). N c kt hp vi th tc POP ( Post Office Protocol) v IMAP (Iinternet Message Access Protocol) ly th.
Hnh 1.3 : Hot ng ca POP v SMTP. Gi th (Send) : Sau khi khi ngi s dng my tnh dung MUA t vit th v ghi r a ch ca ngi nhn v bm gi th th my tnh s chuyn bc th ln MTA ca ngi gi. Cn c vo a ch ngi gi, my ch gi s chuyn
th n mt MTA thch hp. Giao thc kt ni t chng trnh son th (MUA) n my ch gi th (MTA) l SMTP. Chuyn th (Delivery) : Nu my gi (Local-MTA) c th lin lc c vi my nhn (RemoteMTA) th vic chuyn th s c tin hnh. Giao thc c s dng vn chuyn th gia hai my ch th in t cng l SMTP. Trc khi nhn th th my nhn s kim sot tn ngi nhn c hp th thuc my nhn qun l hay khng. Nu tn ngi nhn th thuc my nhn qun l th l th s c nhn ly v l th s c b vo hp th ca ngi nhn . Trng hp nu my nhn kim sot thy rng tn ngi nhn khng c hp th th my nhn s khc t vic nhn l th. Trong trng hp khc t ny th my gi s thng bo cho ngi gi bit l ngi nhn khng c hp th (user unknown). Nhn th (Receive) : Sau khi my nhn (Remote-MTA) nhn l th v b vo hp th cho ngi nhn ti my nhn. MUA s kt ni n my nhn xem th hoc ly v xem. Sau khi xem th xong th ngi nhn c th lu tr (save), hoc xo (delete), hoc tr li (reply) v.v..Trng hp nu ngi nhn mun tr li li l th cho ngi gi th ngi nhn khng cn phi ghi li a ch v a ch ca ngi gi c sn trong l th v chng trnh th s b a ch o vo trong bc th tr li. Giao thc c s dng nhn th ph bin hin nay l POP3 v IMAP. Trm phc v th hay cn gi l my ch th in t (Mail Server) :
Trn thc t, trong nhng c quan v cc hng xng ln, my tnh ca ngi gi th khng trc tip gi n my tnh ca ngi nhn m thng qua cc my ch th in t (My ch th in t - Mail Server bao hm kt hp c MTA, MDA v hp th ca ngi dng).
Hnh 1.4 : Qu trnh gi th t A ti B. Nh m hnh trn cho thy, nu nh mt ngi my A gi ti mt ngi my B mt l th th trc nht my A s gi n my ch th in t X. khi trm phc v th X s chuyn tip cho my ch th in t Y. Khi trm phc v th Y nhn c th t X th Y s chuyn th ti my B l ni ngi nhn. Trng hp my B b trc trc th my ch th Y s gi th. Thng thng th my ch th in t thng chuyn nhiu th cng mt lc cho mt my nhn. Nh v d trn trm phc v th Y c th chuyn nhiu th cng mt lc cho my B t nhiu ni gi n. Mt vi cng dng khc ca my ch thu l khi ngi s dng c chuyn phi ngh mt thi gian th ngi s dng c th yu cu my ch th
gi gim tt c nhng th t trong thi gian ngi s dng vng mt hoc c th yu cu my ch th chuyn tat c cc th ti mt hp th khc. 1.3. Gii thiu v h thng DNS. Trong cc mc trc chng ta cp ti cc khi nim c bn ca h thng th in t. Ti phn ny chng ta tm hiu khi nim v h thng tn min hay cn gi l DNS (Domain Name S ystem). H thng tn min gip chng ta hiu c cu trc a ch th v cch vn chuyn th trn mng. 1.3.1. Gii thiu v h thng DNS. Mi my tnh khi kt ni vo mng Internet th c gn cho mt a ch IP xc nh. a ch IP ca mi my l duy nht v gip my tnh c th xc nh ng i n mt my tnh khc mt cch d dng. i vi ngi dng th a ch IP l rt kh nh (v d a ch IP 203.162.0.11 l ca my DNS server ti H ni). Cho nn, cn phi s dng mt h thng gip cho my tnh tnh ton ng i mt cch d dng v ng thi cng gip ngi dng d nh. Do vy, h thng DNS ra i nhm gip cho ngi dng c th chuyn i t a ch IP kh nh m my tnh s dng sang mt tn d nh cho ngi s dng v ngy cng pht trin. Nhng tn gi nh nh home.vnn.vn hoc www.cnn.com th c gi l tn min (domain name hoc DNS name). N gip cho ngi s dng d dng nh v n dng ch m ngi bnh thng c th hiu v s dng hng ngy. H thng DNS s dng h thng c s d liu phn tn v phn cp hnh cy. V vy vic qun l cng d dng v cng rt thun tin cho vic chuyn i t tn min sang a ch IP v ngc li. H thng DNS cng ging nh m hnh qun l c nhn ca mt t nc. Mi c nhn s c mt tn xc nh ng thi cng c a ch chng minh th gip qun l con ngi mt cch d dng hn. Mi c nhn u c mt s cn cc qun l : H thng DNS gip cho mng Internet thn thin hn vi ngi s dng. Do vy mng Internet pht trin bng n mt vi nm gn y. Theo thng k trn th gii vo thi im thng 7/2000, s lng tn min c ng k l 93.000.000. Ni chung mc ch ca h thng DNS l:
a ch IP kh nh cho ngi s dng nhng d dng vi my tnh. Tn th d nh vi ngi s dng nhng khng dng c vi my tnh. H thng DNS gip chuyn i t tn min sang a ch IP v ngc li gip ngi dng d dng s dng h thng my tnh. 1.3.2. Hot ng ca DNS. H thng DNS s dng giao thc UDP ti lp 4 ca m hnh OSI, mc nh l s dng cng 53 trao i thng tin v tn min. Hot ng ca h thng DNS l chuyn i tn min sang a ch IP v ngc li. H thng c s d liu ca DNS l h thng c s d liu phn tn. Cc DNS server c phn quyn qun l cc tn min xc nh v chng lin kt vi nhau cho php ngi dng c th truy vn mt tn min bt k (c tn ti) ti bt c im no trn mng mt cch nhanh nht. 1.3.3. Cc bn ghi ca DNS v lin quan gia DNS v h thng E-mail. H thng DNS gip cho mng my tnh hot ng d dng bng cch chuyn i t tn min sang a ch IP. Khng ch vy cc bn khai ca DNS cn gip xc nh dch v trn mng: Bn khai (address) : xc nh chuyn i t tn ca host xc nh sang a ch IP. Vi d : host1 vnn.vn. IN A 203.162.0.151 host2.vnn.vn. IN A 203.162.0.152 hn-mail05.vnn.vn. IN A 203.162.0.190 hn-mail06.vnn.vn. IN A 203.162.0.191 Bn khai CNAME : xc nh nh x ca mt tn min n mt host xc nh (host thng c khai bng bn khai A) : Vi d: home.vnn.vn. IN CNAME host1.vnn.vn. home.vnn.vn. IN CNAME host2.vnn.vn. Bn khai CNAME cho php xc nh trang web c domain la home.vnn.vn c ch v hai host: host1.vnn.vn (203.162.0.151) v host2.vnn.vn (203.162.0.152). Trn h thng DNS c c ch cho php cc truy vn th nht v trang web home.vnn.vn ch n host1.vnn.vn v truy vn
th hai v home.vnn.vn s c ch n host2.vnn.vn c nh vy truy vn 3 ch n host1.vnn.vn... Bn khai MX (Mail Exchanger): xc nh domain ca th in t c chuyn v mt server mail xc nh : V d : hn.vnn.vn. IN MX10 hn-mail05.vnn.vn hn.vnn.vn. IN MX20 hn-mail06.vnn.vn Vi gi tr 10 ti bn ghi s mt v gi tr 20 ca bn ghi s hai l gi tr u tin m th s gi v host no (gi tr cng nh th mc u tin cng cao). Nu khng gi c n host c u tin cao th n s gi n host c u tin thp hn. Bn khai MX cho php xc nh tt c cc th thuc domain hn.vnn.vn c chuyn v host hn-mail05.vnn.vn (203.162.0.190). Nu host hnmail05.vnn.vn c s c th cc th s c chuyn v host hn-mail06.vnn.vn (203.162.0.191) Bn khai PTR (pointer) : xc nh chuyn i t a ch IP sang tn min. V d : 203.162.0.18 IR PTR webproxy.vnn.vn. 203.162.0.190 IR PTR hn-mail05.vnn.vn. 203.162.0.191 IR PTR hn-mail06.vnn.vn. Bn khai PTR c rt nhiu mc ch : Nh kim tra mt bc th gi n t mt domain c a ch IP xc nh v ng thi kim tra ngc li IP cng phi tng ng vi domain th mi c nhn. m bo trch nhim vic gi mo a ch gi th rc. Truy nhp t xa: ch cho php mt host c domain tng ng vi a ch IP v ngc li mi c php truy nhp trnh vic gi mo truy nhp. MTA mun chuyn mt bc th n MTA2 : MTA1 s kim tra phn header c bc th tri phn a ch ngi nhn xc nh a ch ngi nhn. MTA1 s tch phn domain ca ngi nhn v truy vn h thng DNS xc nh a ch IP ca phn domain ca ngi gi n MTA2.
Khi xc nh c a ch ca MTA2 th cn c vo routing ca mng kt ni tin trnh SMTP n MTA2 chuyn th. Sau MTA2 s chuyn vo hp th tng ng c ngi nhn. 1.4. Cu trc ca E-Mail. Tng t nh vic gi th bng bu in, vic gi th in t cng cn phi c a ch ca ni ngi gi v a ch ca ni ngi nhn. a ch ca E-Mail c theo cu trc nh sau: User-mailbox@domain-part . Hay d hiu hn l(Hp-th@vng qun l). User-mailbox (hp th): l a ch ca hp th ngi nhn trn my ch qun l th. C th hiu nh phn a ch s nh ca th bu in thng thng. Domain-part (tn min):l khu vc qun l ca ngi nhn trn Internet. C th hiu n ging nh mt thnh ph, tn tnh v quc gia nh a ch nh trn th bu in thng thng. V d ca mt dng a ch thng dng nht : ktm-vdc1vdc.com.vn T phi sang tri, vn l h thng tn min ca Vit Nam qun l. com l hp th thng mi. vdc l tn ca mt my tnh do VDC qun l. ktmvcd1 l tn hp th ca my ch th in ca vdc. Trn my tnh c tn min l vdc.com.vn cn c th c nhiu hp th cho nhiu ngi khc. V d: lan@vdc.com.vn, diep@vdc.com.vn ... Tm li a ch th in t thng c hai phn chnh : V d : ktm@vdc.com.vn Phn trc l phn tn ca ngi dng user name (ktm) n thng l hp th ca ngi nhn th trn my ch th in t. Sau l phn nh du @. Cui cng l phn tn min xc nh a ch my ch th in t qun l th in t m ngi dng ng k (vdc.com.vn) v hp th trn . N thng l tn ca mt c quan hoc mt t chc v n hot ng da trn hot ng ca h thng tn min. Th in t (E-mail)c cu to tng t nh nhng bc th thng thng v chia lm hai phn chnh: Phn u (header): cha tn v a ch ca ngi nhn, tn v a ch cua nhng ngi s c gi n, ch ca th (subject). Tn v a ch ca ngi gi, ngy thng ca bc th.
From : a ch ca ngi gi. To : Ngi gi chnh ca bc th. Cc : Nhng ngi ng gi (s nhn c mt bn copy th). Bcc : Nhng ngi cng nhn c mt bn nhng nhng ngi ny khng xem c nhng ai c nhn th. Date : Thi gian gi bc th. Subject : Ch ca bc th. Message-Id : M xc nh ca bc th ( l duy nht v c t ng in vo). Reply-to : a ch nhn c phc p Thn ca th (body) : cha ni dung ca bc th. Nhng khi gi cc bc th bnh thng bn phi c a ch chnh xc. Nu s dng sai a ch hoc g nhm a ch th th s khng th gi n ngi nhn v n s chuyn li cho ngi gi v bo a ch khng bit (Address Unknown). Khi nhn c mt th in t, th phn u (header) ca th s cho bit n t u n, v n c gi i nh th no v khi no. N nh vic ng du bu in. Khng nh nhng bc th thng thng, nhng bc th thng thng c trong phong b cn th in t th khng c ring t nh vy m n nh mt tm thip postcard. Th in t c th b chn li v b c bi nhng ngi khng c quyn c. trnh iu v d b mt ch c cch m ha thng tin gi trong th. Xc inh E-mai t u n : Thng th mt bc th khng c gi trc tip t ngi gi n ngi nhn. M phi t nht l i qua bn host trc khi n ngi nhn. iu xy ra bi v hu ht cc t chc u thit lp mt server trung chuyn th hay cn gi l mail server. Do khi mt ngi gi th n cho mt ngi nhn th n phi i t my tnh ca ngi gi mail server qun l hp th ca mnh v c chuyn n mail server qun l ngi nhn sau cng l n my tnh ca ngi nhn. 1.5. Gii thiu v mail client. Mail client l mt phn mm u cui cho php ngi s dng th in t c th s dng mt cc chc nng c bn sau :
Ly th gi n. c th in t. Gi v tr li th in t. Lu th in t. In th in t. Qun l vic gi v nhn th. 1.5.1. Cc tnh nng cao ca mail client. Ngoi cc tnh nng c bn cho php ngi dng c th s dng th in t. Cc phn mm mail client thng c kt hp thm nhiu tnh nng gip cho ngi dng s dng th in t mt cch d dng, an ton v hiu qu. 1.5.1.1. Gii thiu qun l a ch. Ngy nay thi i thng tin, cc giao dch thng mi, lin h i tc v thm hi ngi thn s dng th in t l rt nhiu. Do cc phn mm mail client thng cung cp cho ngi dng cc cng c cho php qun l a ch th in t mt cch hiu qu nht. Thng cc phn mm mail client s dng ca s qun l a ch hay cn gi l address book. N cho php ngi dng mail clien c th qun l a ch th qun l ca ngi dng mt cch hiu qu ng thi cho php chia s danh sch vi ngi dng khc. 1.5.1.2. Gii thiu lc th. Trn Internet lng thng tin l rt nhiu nhng trn c loi thng tin: tt c, xu c. Th in t cng vy, do khng ch ti my ch th in t c kh nng hn ch, phn loi x l th in t m mail client cng cho php ngi dng mail client c kh nng chn cc th khng mong mun theo a ch, hay theo t kho bt k ... gip ngi dng khng phi mt nhiu thi gian phn loi v x l nhng th khng c ch. Ngoi ra,b lc th cn cho php ngi dng phn loi th, sp xp, qun l th mt cch hiu qu. 1.5.1.3. Gii thiu chng thc in t. Digital IDs l mt xc thc in t tng t nh giy php , h chiu i vi con ngi. Bn c th dng Digital ID xc nhn bn c quyn truy nhp thng tin hoc vo cc dch v trc tuyn.
Bun bn o, ngn hng in t v cc dch v thng mi in t khc ngy cng thng dng v em n cho ngi dng nhiu thun li v tin dng, n cho php bn ngi ti nh c th lm c mi vic. Nhng d sao bn cng phi quan tm nhiu v vn ring t v bo mt. ch m ho d liu thi cha , n khng xc nh c ngi gi v ngi nhn thng tin c m ho. Khng c cc bin php bo v c bit th ngi gi hoc ni dung c th b gi mo. a ch Digital ID cho php bn gii quyt vn , n cung cp mt on m in t xc nh tng ngi. S dng kt hp vi m ho d liu n cho php mt gii php an ton khi chuyn bc in t ngi gi n ngi nhn. 1.5.2. Gii thiu v mt s mail client. C rt nhiu chng trnh mail client. Nhng may mn thay l phn ln chng hot ng tng t nh nhau. Mc ny s gii thiu mt s chng trnh mail client thng dng nht nh Pine, Eudora, SPRYMail, Group wise. Ngoi ra phn tip theo (2.5)s gii thiu v hai phn mm mail client rt thng dng trn nn h iu hnh Windows l Netscape Mail v Outlook Express. 1.5.2.1. Pine. Pine l mt chng trnh e-mail client c pht trin bi trng i hc Washington ti Seattle vo nm 1989. Chng trnh c s dng ch yu bi nhng ngi truy cp trc tip n mt server (pine rt thng dng trong cc lp trnh vin). Mc d khng cung cp mt giao din ha nhng pine l mt chng trnh nhiu tnh nng. N cng tng i d s dng. S dng pine bn c th reply to mail; forward mail; send copies to, hay cc n cc a ch th khc; to mt mailing list; to cc nickname; v to bao nhiu th mc tu thch. V pine chy trn server, bn c th ly th t bt c ni no. Pine khng s dng giao thc POP3. 1.5.2.2. Eudora. Eudora l mt chng trnh mail client c nhiu tnh nng, chy trn c PC v Macintosh. Eudora l chng trnh d s dng. Eudora c cc phin bn commercial, freeware. Bn thng mi (commercial) c thm nhiu tnh nng nh kim tra ng php. Bn c th truy cp th t bt c my client no. 1.5.2.3. SPRYMail.
Vi nhng tnh nng ca mnh, SPRYMail l chng trnh ng phi c cp n. Bn c th c cc bn tin trong hp th trc khi ti xun server. Tnh nng ny cho php bn xo cc bn tin bn khng mun c, hoc tr li ngay lp tc. Bn cng c th cc bn tin trn server ri sau ti xung cc my khc. Cc chng trnh mail client khc cng c tnh nng ny, nhng khng r rng nh SPRYMail. Tuy vy SPRYMail khng phc tp nh Pine hay gi cm nh Eudora. 1.5.2.4. GroupWise. Groupwise l mt chng trnh e-mail client thng s dng trong cc mng LAN, nhng n cng c th d dng nng cp tng thch vi mi trng Internet. Groupwise khng c nhiu tnh nng nh Eudora. n cng thiu mt s tnh nng m ngi s dng Internet a thch. V d nh, Eudora cho php bn thay i mt khu th, mt tnh nng thng c ngi s dng Internet thc hin. Nhng vi Groupwise, mt khu th ca bn chnh l mt khu my tnh ca bn. 1.5.3. Cc tham s chung ci t mail client. Tuy rt nhiu loi mail client, nhng ci t c chng bn ch cn c mt hm th c ng k vi ISP (Internet Service Prpvider) v nm c nguyn l mt s tham s chung. Chng ta s trnh by chng di y v ly v d vi hp th support@vnn.vn c ng k ti cng ty VDC (Vit nam Data Communication Company Cng ty in ton v Truyn s liu). Display name : Tn hin th ca hp th. V d: Hp th h tr ca cng ty VDC. E-mail address : a ch E-mail ca hp th. V d : support@vnn.vn. Incoming mail server : a ch mail server lm chc nng nhn th v. a ch ny do ISP cung cp cho bn. V d: mail.vnn.vn. Server type (of incoming mail server) : Kiu mail server nhn th ca bn. Gm nhng loi sau: POP3, IMAP, HTTP. Tu theo ISP h tr loi server type no m bn c th chn la. V d nh cng ty VDC h tr IMAP v POP3 cho cc hm th @vnn.vn. Outgoing mail server : a ch mail server lm chc nng gi th i. a ch ny do ISP cung cp cho bn. V d: smtp.vnn.vn.
Account name : Tn ti khon, chnh l phn trc phn @ trong a ch th ca bn. V d: support. Password : L mt khu hp th ca bn. Mt khu ny do bn t ra khi ng k ti khon th vi ISP. 1.5.4. Gii thiu s dng phn mm mail client. Trn Internet c rt nhiu loi mail client khc nhau nhng hai phn mm thng dng nht l Outlook Express ca hng Microsoft v Netscape Mail ca hng Netscape. ng thi cng l hai phn mm s dng d dng, tch hp nhiu tnh nng h tr ngi s dng, do trong khun kh gio trnh ny ch gii thiu ci t v s dng Oitlook Express v Netscape Mail. 1.5.4.1 Ci t chng trnh Outlook Express. Bc 1: Chn start/program/Outlook Express, hoc nhn vo biu tng Outlook Express trn mn hnh khi ng chng trnh. Bc 2: Chn menu tools/Account. Bc 3: Chn tip mc Mail/Add/Mail, Outlook s ln lt hi bn v tng thng s v hng dn bn theo tng bc : Display name : tn y ca bn. V d: H Tr Dch V-VDC1. E-mail address : a ch E-mail ca bn Incoming mail (POP3) server : g a ch mail server cha hp th nhn v ca bn (a ch ny tu thuc vo ISP bn ng k). V d: mail.vnn.vn. Outgoing mail (SMTP) server : g a ch mail server cha hp th gi i. V d: mail.vnn.vn sau bn n next > s xut hin ca s ti Account name : Bn g tn hp th ca bn(phn trc @ trong a ch th ca bn). V d: support1. Password : L mt khu hp th ca bn (c th trng nh trnh by trn). Bc tip theo nhn chut vo Next>cui cng bn nhn vo Finish kt thc qu trnh ci t. 1.5.4.2. S dng phn mm Outlook Express.
Ti giao din chnh ca chng trnh Outlook Express (sau khi khi to chng trnh vo Start/Program/Outlook Express, hoc nhn vo biu tng Outlook Express trn mn hnh). Trn thanh cng c ca Outlook Express c cc nt chc nng sau : New Mail : Son th mi. Reply : Phc p li ngi gi. Reply All : Phc p li ngi gi v nhng ngi ng nhn. Forward : Chuyn tip bc th cho ngi th ba. Print : In th. Delete : Xo th. Send/Recv : To kt ni ti Mail Server nhn v gi th. Addresses : S lu a ch to sn. Find : Dng tm th. Trn ca s cc folders c nhng chc nng chnh sau : Inbox : Cha nhng th nhn v. Outbox : Cha nhng th son v ch gi i. Send Items : Sao li nhng th gi. Deleted Items : Cha nhng th xo. Ngoi cc folders chnh trn cc bn c th to cc folders ca ring mnh thun tin trong vic qun l th. Trn thanh menu ca giao din Outlook Express, chn File/Folder/New to Folder ring cho mnh. 1.6. Mt s tnh nng c bn qun tr v thit lp h thng th in t. 1.6.1. M hnh hot ng ca h thng th in t. Cc thnh phn c bn thit lp nn mt h thng mail server bao gm: SMTP-IN Queue : l ni lu tr cc th in t nhn v bng th tc SMTP trc khi chuyn local Queue hoc Remote Queue. Local Queue : l ni cc th gi n c xp hng trc khi chuyn vo hp th ca ngi dng ti my ch th (local mailboxes). Remote Queue : l ni lu tr th trc khi c gi ra ngoi Internet. Local Mailboxes : l hp th ca cc account ng k s dng. (ni lu tr cc th gi n).
Email authentication : Cho php ngi s dng c th xc thc ly th t hp th ca mnh trn my ch th v mail client. Ngoi cc thnh phn c bn cho php h thng my ch th in t c th gi v nhn th n thng c tch hp thm cc chc nng m bo cho h thng hot ng n nh v an ton.
Hnh 1.5 .M hnh hot ng ca my ch th in t. 1.6.2. M hnh ca h thng my ch th in t. Vi mt h thng my ch th in t cung cp cho mt n v va v nh th ton b h thng thng c tch hp vo mt my ch. V my ch va lm chc nng nhn, gi th, lu tr hp th v kim sot th vo ra. S dng th tc SMTP chuyn, nhn th gia cc my ch th vi nhau. S dng th tc SMTP cho php mail client gi th ln my ch.S dng th tc POP hoc IMAP mail client nhn th v. Nhng vi mt h thng th in t ln th vic s dng nh vy l khng ph hp do nng lc ca mt my ch thng l c hn. Do vi mt h thng th in t ln thng c thit k s dng m hnh fron endback end nh hnh v 3.4 ng thi vic qun l account c s dng bi mt my ch LDAP. Chc nng ca tng thnh phn : Font end Server: dng giao tip vi ngi dng. gi v nhn th.
LDAP server: qun l account ca cc thu bao. Back end Server: qun l hp th hoc dng iu khin storage. Storage: lu tr hp th ca ngi dng. H thng th in t s dng c ch front end back end. S dng front end giao tip trc tip vi ngi dng gi v nhn th. Trn front end server s chy cc tin trnh SMTP, POP v cc queue. Khi th n hoc mt ngi dng truy nhp vo hp th cu mnh th front s hng ra LDAP xc nh hp th ca ngi dng trn back end server. Thng back end server s dng c ch s dng shared storage (chia s) qun l chung a lu gi hp th ngi dng. vi vic s dng c ch ny cho php : Cc front end v back end c th phn ti vi nhau, d dng nng cp khi lng khch hng tng ln. Vi vic ch phi tng mt my ch bnh thng ch khng phi nng cp ton b h thng vi mt my ch tht mnh. D dng bo dng bo tr h thng. c th bo dng tng my mt m khng cn phi dng hot ng ca ton h thng m bo an ton khi mt my ch c s c. Vi vic s dng h thng qun l account bng LDAP cho php chia s thng tin v account vi cc dch v khc. C th t firewall gia front end v back end hoc trc front end Front end t pha trc v tch bit vi back end do front end nh mt c ch bo v back end l ni cha d liu ca khch hng. Xc nh mt im duy nht qun l ngi dng. Khng c my ch front end th mi ngi dng phi bit tn ca my ch m cha hp th ca mnh. iu dn n phc tp cho vic qun tr v mn do ca h thng. Vi my ch front end bn c th s dng chung URL hoc a ch POP v IMAP cho cc mail client. 1.6.3. Cc thit lp an ton cho server. 1.6.3.1. Thit lp an ton chuyn th n cho my ch th in th khc. ng trung chuyn (open relay) th t mt a ch khng thuc my ch th qun l gi n mt a ch cng khng phi cho n qun l. Nu bt buc phi relay th ch cho php mt s tn min hoc mt s a ch IP c php s dng trung chuyn th.
1.6.3.2. Thit lp an ton nhn th t mt my ch khc. Thit lp c ch kim tra th gi n. Nhng th t nhng my ch th in t m trung chuyn th khng chp nhn. Thit lp cc c ch kim tra nh kim tra reverse lookup (c ch chuyn i IP sang tn min). Cu trc ca mt bc th ti phn header c ghi li ti trng To ca n a ch domain ca th v a ch IP. Khi thit lp c ch ny th ch cc th t my ch th c a ch tn min tng ng vi mt a ch IP v kim tra t IP sang tn min tng ng th mi c php nhn. 1.6.3.3. Thit lp an ton cho php mail client nhn th. Thit lp c ch xc thc dng c php dng POP v IAMP. Ch mt s a ch xc nh mi c php truy nhp vo ly th. Thit lp cc gii php cho php s dng mt khu v th trn ng truyn ly v c m ho (s dng SSL cho POP v IMAP v xc thc).
1.6.3.4. Thit lp an ton cho php mail client gi th. Thit lp c ch ch cc thu bao cu my ch th in t mi c php gi th i. Nh cc account c tn min ng vi tn min m my ch qun l mi c php gi th. Thit lp c ch POP before SMTP. C ngha l ch khi mail client s dng xc thc xem th vi mt s iu kin (nh m hp th c mt pht...) mi c php gi th. Nu c th ch mt s a ch IP ca mail client mi c php gi th i. 1.6.3.5. Thit lp cc c ch an ton khc. Thit lp cc c ch qut virus cho th gi i, gi n qua my ch. Chn cc th c ni dung c hi, cc a ch IP m t xut pht cc th khng c li. Theo di hp th postmaster nhn c cc phn nh kp thi pht hin cc s c gii quyt.
Tham gia vo cc mail list ca nh cung cp phn mm v phn cng thng xuyn c cung cp cc li ca sn phm v cch gii quyt. Khng ai c th bit ht mi vic c th xy ra. Do vic tham gia cc din n (forum) trao i, hc hi cc kinh nghim c th xc nh v phng trnh cc s c c th xy ra. m bo an ton ca h iu hnh chy phn mm th in t cng l mt vic rt quan trng. Thng xuyn lu tr cu hnh v log ca h thng c th khc phc kp thi khi c s c. 1.6.4. Qun tr my ch th in t t xa. Pht trin truy nhp t xa qun tr v s dng th rt tin li. c bit l qun tr t xa trn web v hu ht cc my tnh ni mng u s dng web browser, d s dng cho mi ngi v ng thi li rt hiu qu. t cc chc nng v cng c qun tr th trn world wide web s em li nhiu hiu qu v linh hot trong s dng ca ngi qun tr cng nh ngi dng, n c th cho php bt c lc no, bt c u ngi dng cng c th lm vic, tm li vic qun tr t xa cho php nhng ngi lm vic s dng my tnh c c hi thit lp k hoch cho cng vic v lm vic ti bt c a im no c kt ni Internet v gim bt gnh nng cho ngi qun tr th in t.
Hnh 1.6 : Qun tr my ch t xa. 1.6.5. Gii thiu mt s Mail Server. 1.6.5.1. Gii thiu v Sendmail. Sendmail l phn mm qun l th in t m ngun m c pht trin bi t chc hip hi Sendmail. N c nh gi l mt MTA linh hot v h tr nhiu loi chuyn giao th. Bao gm SMTP. Bn Sendmail u tin do ng Eric Allman vit vo u nhng nm 1980 ti UC Berkeley. Sendmail chy trn h iu hanh Unix v c th ti v min ph s dng cng nh pht trin thm. Cng nh cc phn mm m ngun m ni chung Sendmail yu cu ngi s dng phi c nhng hiu bit su v h thng cng nh trnh c th khai thc h thng mt cch c hiu qu v an ton. Sendmail b ch trch l chm, qu phc tp v kh duy tr so vi cc MTA khc nh Qmail. Tuy vy, n vn l ph thng nht trn Internet do c vai tr l mt MTA chun chy trn cc bin th ca h iu hnh Unix. 1.6.5.2. Gii thiu v Qmail Qmail l mt MTA c chc nng tng t nh Sendmail, c vit bi chuyn gia mt m Daniel J. Bernstein. Nhng c tnh ca Qmail l c kin trc module cao, tun th cht ch thit k phn mm ca ng Bernstein, v
bo mt. Qmail c coi l m ngun m nhng khng chnh xc. l do tuy c phn phi, s dng min ph v m ngun c th cng khai nhng ngi s dng khng c php phn phi nhng phin bn b thay i mt tiu ch ca phn mm m ngun m. Qmail c chy trn cc h iu hnh ta Unix (Unix-like). So vi Sendmail, Qmail c b sung thm nhiu tnh nng, an ton, tin cy v hiu qu hn. Di y l bn so snh hai phn mm ny. Bng 5 : Bng so snh hai phn mm. MTA chn chn bo mt Thp Cao Cc c tnh Kh nng thi hnh Cao Cao Thp Cao
Sendmail Cao Qmail Trung bnh
s dng v pht trin phn mm Qmail chng ta c th truy cp a ch www.qmail.org .V c bit l bn qmail pht trin bi Dave Sill, c ti a ch www.lifewithqmail.org 1.6.5.3. Gii thiu Microsoft Exchange Server. Microsoft Exchang Server l phn mm mail Server c cng ty Microsoft pht trin. Chng trnh ny chy trn h iu hnh Windows. Song song vi s pht trin ca dong h iu hnh ny Microsoft Exchange server cng c ph cp v h tr tt. Cc version ca phn mm ny tuy c nhng tnh nng khc nhau nhng u cng c xy dng trn tiu ch cng ngy cng tng tin cy, bo mt v tnh ch li. 1.6.5.4. Gii thiu v MDaemon Server. L phn mm Mail Server tiu chun thng mi c pht trin bi cng ty phn mm Alt-N. MDaemon c pht trin trn h iu hnh Win/NT v c giao din s dng rt thn thin. MDaemon Server pht trin rt y cc tnh nng ca mt Mail Server. MDaemon Server hot ng rt hiu qu cho cc doanh nghip va v nh. Chng ta s tm hiu chi tit v phn mm ny trong cc chng tip theo ca gio trnh.Thng tin ca phn mm ny c th tm thy ti a ch : http://www.altn.com/Default.asp 1.6.5.5. So snh cc phn mm mail server thng dng.
Thng tin c ly t trong web ca Epions Inc, l mt hng mua bn trc tuyn c uy tn ti M.Cc thng tin bnh chn ca khch hng cho cc phn mm mail server. y ta ch quan tm n mt s phn mm thng dng c s dng ph bin ti Vit Nam l MDaemon, Exchange Server, Eudora Internet Mail, Netscape Messaging Server. Trn hnh ta c th thy cc thng s so snh v kh nng qun l d dng (Management Ease), h tr k thut (Technical Support), tin cy (Reliability) v quy m (Scalability). Cn vi phn mm Sendmail v Qmail hot ng trn h iu hnh unix v linux c nhng u khuyt im sau: u im : L phn mm m ngun m nn c phn phi, pht trin min ph. Hot ng n nh v kh tin cy (c bit l Qmail). Nhc im : Qun l khng d dng (cn phi hiu su v h iu hnh v hot ng ca h iu hnh cng nh phn mm mail server). Pht trin kh khn (do phi cn nhiu gi phn mm khc nhau kt ni vi nhau pht trin cc tnh nng khc nhau). Do l phn mm m ngun m nn kh nng h tr k thut l khng cao. 1.6.6. Qun tr h thng th in t. 1.6.6.1. Mc ch ca qun tr h thng. Ngy nay, th in t l mt cng c gip vic rt hiu qu chuyn ti tm t tnh cm ca con ngi cng nh trong kinh doanh. Ngoi ra tn min ca ca a ch th in t cng l mt thng hiu i din cho gi tr ca mt n v, t chc hot ng trong bt c lnh vc no. Do vy nhu cu xy dng mt h thng th in t cho ring mnh l rt cn thit i vi mt t chc hay cc n v.N cn cho php cc n v c th t mnh qun l h thng my ch th in t ca chnh mnh. iu ng ngha vi vic ch ng trong vic qun tr my ch th in t cng nh m bo an ton cao hn cho thng tin ca doanh nghip. Cc thng s cn thit thit lp Mail Server :
Domain name phi ng k tn min cho my ch th in t. Nu my ch th qun l nhiu Domain name th cn phi ng k cc Domain name tng ng cho my ch th. a ch IP ca DNS Server m Mail Server ca bn s truy vn: xc nh a ch IP ca my ch DNS. H thng Domain name c tc dng xc nh ng i ca mt bc th t ni gi n ni nhn. h thng th in t c th hot ng c th Domain name ca h thng th trn h thng DNS phi c ch v my ch qun l th. C hai phng php kt ni vo Internet gi v nhn th : Cch th nht l: my ch th kt ni trc tip thng qua Router/gateway vo mng Internet. Trong trng hp ny bn khng cn thm thng tin m ch c cp mt a ch IP tnh. Cch th hai l: PC kt ni thng qua Modem v bn phi kt ni dialup hoc ADSL vo mng. Trong trng hp ny th ca bn c lu trn mail geteway ca mt nh cung cp dch v v bn cn phi c thng tin ly th v, lc ny bn khng cn a ch IP tnh. Thng thng nh cung cp dch v chuyn tt c th ca tn min ti account catch-all POP3 trn my ch th in t. 1.6.6.2. Cc cng vic cn thit qun tr h thng th in t. Thit lp cu hnh v cu trc ca dch v th in t my ch hot ng ti u v ph hp vi nng lc ca h thng, bng thng qua mng v dung lng ca a m bo hot ng n nh ca h thng. Thit lp cc chnh sch v cc iu kin chng virut (anti-virut) v chng spam (anti-Spam). Lu tr v khi phc li d liu v cu hnh ca h thng (backup/restore). Nhn cc thng bo v tnh trng gi nhn th ca ngi dng, tr gip v tn cch gii quyt cc li ca h thng. Xc nh v phn tch, phng chng cc li ca h thng v lm bo co ln cp trn. Cng vic ca ngi qun tr my ch th in t l mt cng vic yu cu rt nhiu cng sc cng nh tr tu v c s kin tr.
c th qun l tt h thng my ch th in t th ngi qun tr phi hiu ht cu trc ca mng, ca h thng th in t v s hot ng, cu hnh ca my ch c th pht huy tt nht nng lc ca h thng.Thit lp chnh sch hot ng ca h thng th nh chn cc th n theo a ch IP, a ch th hay mt t kho xc nh ngn chn cc th phn ng, ph hoi h thng spam th. Bt c h thng no u khng m 100% an ton v: khng ai c th m bo c th bit ht mi vn v h thng cng nh trnh ca hacker ngy cng cao.ng thi cc thm ha gy ra do thin nhin cng nh con ngi l khng th lng ht c, do vic sao lu tr h thng c th khi phc li mt cch nhanh nht h thng l mt yu cu quan trng vi ngi qun tr h thng. Ging nh nhng bc th tay thng thng, yu cu ca mt bc l phi c chuyn t ngi gi n ngi nhn mt cch chnh xc. Do cng vic ca ngi qun tr th cn phi xc nh cc phn nh ca khch hng v xc nh nguyn nhn gy li v tr gip khch hng khi cn thit. Xc nh v phn tch cc li c kh nng xy ra vi h thng tm cch gii quyt ng thi phi bo co cp trn ( i cc li ngoi kh nng x l ca ngi qun tr mng do s phi hp gii quyt l rt cn thit.
CHNG 2 : CC VN AN TON TH IN T.
2.1. S thiu bo mt trong h thng email. Webmail : Nu kt ni ti Webmail Server l khng an ton (v d a ch l http:// v khng phi l https://), lc mi thng tin bao gm
Username v pasword khng c m ha khi n t Webmail Server ti my tnh. SMTP : SMTP khng m ha thng ip. Mi kt ni gia SMTP Servers gi thng ip ca bn di dng ch cho mi k nghe trm thy. Thm vo , nu email server yu cu bn gi username v password login vo SMTP server mc ch chuyn thng ip ti mt server khc, khi tt c u c gi di dng ch, mc tiu nghe trm. Cui cng, thng ip gi bng SMTP bao gm thng tin v m y tnh m chng c gi i, v chng trnh email c s dng. Nhng thng tin ny sn sng cho mi ngi nhn, c th mang tnh cht c nhn. POP v IMAP: Giao thc POP v IMAP yu cu bn gi username v password login, u khng c m ha. V vy, thng ip ca bn c th c c bi bt k k no ang nghe ln thng tin ca my tnh cng nh nh cung cp dch v email ca bn. Backups : Thng ip c lu tr trn SMTP server di dng ch, khng c m ha.Vic Sao lu d liu trn server c th c thc hin bt c lc no v ngi qun tr c th c bt k d liu no trn my tnh. 2.2. Cc nguy c trong qu trnh gi email. 2.2.1. Eavesdropping. Internet l ni rng ln vi rt nhiu ngi. Tht d dng ai truy cp vo my tnh hoc on mng m thng tin ca bn ang c truyn trn , bt thng tin v c. Ging nh ai ang phng k bn ang lng nghe cuc ni chuyn in thoi ca bn, hacker c th s dng cc cng c man-in-the-middle bt ton b cc gi tin t ngi s dng email. Vic ny c th c thc hin mt cch d dng thng qua cc chng trnh nh Cain&Abel, Ettercap...
Hnh 2.1 : M hnh Eavesdropping. Khc phc Eavesdropping : Do trnh tnh trng eavesdropping xy ra, chng ta nn m ha cc thng tin khi chng c chuyn i trn mng internet n server Mail. V ngay trn server, thng tin cng cn phi c m ha lu tr 1 cch an ton s dng kha bo mt m ch c ngi nhn ch thc mi bit. 2.2.2. Identify Theft. Nu ai c th thu thp username v password m bn dng truy cp vo email server, h c th c mail ca bn v gi mail nh bn. Thng thng, nhng thng tin ny c th thu thp bi k nghe ln trn SMTP, POP, IMAP hoc kt ni WebMail, bng cch c thng ip m bn nh km theo cc thng tin ny. Khc phc Identify Theft : c th khc phc identity theft, chng ta cn phi to ra c 1 s trao i ring t, b mt v an ton bng cch gi nhng thng tin c nhn v ni dung tin nhn di dng m ha khi chng di chuyn trn internet. V d : MyMail s dng cc ng link giao tip Secure Socket Protocol gim tnh trng indentify Theft xy ra. 2.2.3. Invasion of Privacy. Nu bn rt quan tm n thng tin ring t ca mnh, bn cn xem xt kh nng vic sao lu ca bn khng c bo v .Bn c th cng quan tm n vic nhng ngi khc c kh nng bit c a ch IP ca my tnh bn. Thng tin ny c th c dng nhn ra thnh ph bn ang sng hoc thm ch trong trng hp no c th tm ra a ch ca bn. Vic ny khng xy ra vi WebMail, POP, IMAP, nhng i vi SMTP th li c kh nng xy ra. Khc phc invasion of Privacy : Tt c cc thng tin s c bo mt bng cch m ha bng kha b mt ri lu tr, c th c c mail, ngi nhn cn phi nh chnh xc username v password ca mnh. Du a ch IP trong phn header message, iu ny s gip bo v nhng thng tin c nhn nh a ch thnh ph, tiu bang m bn ang sng.
M ha tt c ni dung email lu tr v cng m ha khi cn truyn. 2.2.4. Message Modification. Bt c ngi no c quyn admin trn bt k server SMTP no m thng ip ca bn n, th khng ch c th c thng ip ca bn, m h cn c th xa hay thay i thng ip trc khi n tip tc i n ch. Ngi nhn ca bn s khng th bit thng ip ca bn c b thay i hay khng? Nu thng ip b xa i mt th h cng khng th bit rng c thng ip c gi cho h. Khc phc Message Modification : Khi email c gi n server mail th n cn lu tr di dng m ha bng 1 kha bo mt ring, khi d cho ai c quyn admin trn server, h vn khng th thay i c ni dung email. Thm na chng ta cng phi ngn chn khng cho System administrator c quyn truy sut ti khan email bng cch n gin reset v to ra 1 password mi. 2.2.5. False Messages. Tht d dng to ra mt thng ip gi mo m c v nh c gi bi mt ngi no . Nhiu vius li dng im ny lan truyn sang cc my tnh khc. Nhn chung, khng c cch g chn chn rng ngi gi thng ip l ngi gi thc s - tn ngi gi c th d dng lm gi. Khc phc False Message : Chng ta c th s dng Reverse DNS lookup, finger, v s tng cng s kim tra credential (account,password) nhn dng a ch email c chnh xc khng, ng thi cng xem xt c email c c gi t server Email v host hp l hay khng. 2.2.6. Message Relay. Thng ip c th b chn li, chnh sa va gi li sau. Bn c th nhn c mt tin nhn nguyn gc hp l nhng sau li nhn c nhng tin nhn gi mo m c v nh hp l. Khc phc Message Relay : Do tt c ni dung ca email c m ha bng cc kha bo mt ng tng ng do s khng c bt k ai c th thay i ni dung ca email v khng c kha bo mt. 2.2.7. Unprotected Backups.
Thng ip c lu di dng plain-text trn tt c cc server SMTP. V th cc bn sao lu ca cc server s cha bn copy thng ip ca bn. Bn sao lu c th gi trong nhiu nm v c th c bi bt k ngi no c quyn truy cp. Thng ip ca bn c th c t nhng ni khng an ton,v bt k ai cng c th ly n c, thm ch sau khi bn ngh l xa ht cc bn copy ca n. Khc phc Unprotected Backups : Nh ni trn, nu nh ni dung v cc thng tin ca email c lu di dng m ha th d cho n c c lu li mt cch khng mong i th cng khng ai c th c c n. 2.2.8. Repudiation. Bi v nhng thng ip thng thng c th b gi mo, do khng c cch no chng minh rng ngi khc c gi ci thng ip cho bn hay khng. Ngha l thm ch nu mt ai gi cho bn mt thng ip, h hon tan c th chi b. y l 1 trong s nhng im ht sc cn lu khi s dng email thc hin cc hp ng, giao dch kinh doanh Khc phc Repudiation : Chng ta cn m ha v lu tr bo mt cc thng tin cng nh ni dung ca email bng 1 kha bo mt duy nht tng ng vi tng user khc nhau. Khi khng ai c th gio mo hoc thay i ni dung ca email. iu ny gip ta m bo c s chnh xc ca email, nh cc hot ng kinh doanh, giao dch s din ra thun li hn, v cng khng ai c th t chi email m chnh mnh gi.
CHNG 3 : GII THIU V SPAM.

3.1 Spam Mail l g . 3.1.1 nh ngha Spam Mail. Spam l khi nim dng gi nhng email qung co hoc nhng email thng mi c gi mt cch rng ri khng theo yu cu ca ngi nhn. Thng thng, vic nhn nhiu spam khin ngi nhn mt thi gian kim tra v xa chng. Do , vic xc nh spam, gip ngi dng lc spam l vn c ngha i vi mail server.
Theo lut Cng ngh thng tin (c hiu lc t ngy 01-01-2007) th nh ngha th rc (theo iu 4.15) l th in t, tin nhn c gi n cho ngi nhn m ngi khng mong mun nhn c hoc khng c trch nhim phi tip nhn theo quy nh ca Php lut. Th rc cha ni dung l cc qung co m ngi dng khng mong i v a im gi n l cc c nhn, nhm ngi. Thng thng cht lng nhng bc th dng ny rt thp. Cc th ny c t ng gi vo hm th ngi nhn m khng cn n yu cu ca ngi nhn. 3.1.2 c im ca Spam Mail. Ngi dng hp th c th c cm gic b "tra tn" bng cc th in t qung co. Cc spam th v hi nhng mi ngy nhiu ngi c th v cc spam mail ny m b y c hp th. Trong nm 2003 khi cc phn mm chng spam cha ph bin v c ca cc hp th in t cn gii hn th c rt nhiu ngi dng email phi nhn c trm spam trong mt ngy m ch c ng vi ni dung khc nhau. Ti sao cc spam li lp i lp li mt ci th qung co c chc ln cho mt hp th? Mt l do l cc hng qung co mun dng hiu ng tm l. Khi hnh nh sn phm no c p vo mt ngi c mi th n lc cn mua mt th c chc nng tng t (hay cng loi) th chnh hnh nh thng hiu ca ci spam mail s hin n trong c ngi trc tin. L do khc l kch thch s t m ca ngi dng email mun c th mt spam xem c ni dung g bn trong. Spam mail khng c "c tnh", hiu theo ngha c hi cho my tnh, m ch i khi lm ngi ch hp th kh chu hoc i khi lm cho cc th t khc quan trng hn thay v nhn c th li b tr v cho ngi gi v l do hp th ngi nhn qu y. Tuy nhin, khng th trnh c cc spam mail c ni dung khiu khch hay li dng. Vic quan trng nht ca ngi dng hp th l ng bao gi tr li hay xc nhn bt k g m cc th ny yu cu v vic n gin l xa chng i. Cc chi ph chuyn th, cha th v x l th nhng lm thuc v ngi dng hay t chc cung ng Webmail. Tuy nhin cn phn bit r rng hon ton hp php khi c cc email tip th.
Nhng ngi gi spam thng ngy to nhng thng tin gi nh l tn, a ch, s in thoi... nh la cc ISP. H cng thng dng s gi hay s n cp ca cc th tn dng chi tr cho cc ti khon. Vic ny cho php h di chuyn tht nhanh t mt ti khon ny sang ti khon khc mi ln b pht hin v b ng ti khon bi cc ch ISP. 3.1.3 Tc hi ca Spam Mail. Lng th rc qu ln s gy nghn ng truyn. Do vy mun tng tc ng truyn cn phi mt thm chi ph tng thm bng thng. Nh cung cp tiu tn dung lng cha th rc. Chi ph cho vic mua, pht trin v bo tr phn mm chng th rc. Thit hi cho h thng khi h thng b nhim m c t th rc. ng truyn b tc nghn, thi gian kt ni trn nhng mng b gi th rc thng chm. Ngi dng mt thi gian cho vic xa th rc. Trong iu kin c b lc vn mt thi gian cho vic cu hnh, bo co, thm ch cn c th nh mt nhng email quan trng do c ch lc th rc khng phn bit c. Mi nm lng th rc tng ln mt cch chng mt vt qua mi s ngn chn ca nhiu phn mm bo mt, cc t chc nghin cu. V tc hi do n th khng th o hay tnh c, nhng theo thng k ca Internet Week th "50 t USD mi nm" l s tin m cc cng ty, t chc thng mi trn th gii phi b ra i ph vi nn th rc ang hng ngy tn cng vo hm th ca nhn vin. M l quc gia chu nhiu thit hi nht, chim 1/3 s tin ni trn. Ngoi vic gim nng sut lao ng, gy kh chu cho ngi nhn, tc nghn bng thng mng v ti nguyn lu tr, lm tng thi gian x l ca h thng my ch e-mail, spam cn l nguyn nhn gy au u cho nhng nh qun tr cc doanh nghip ln v chng lm h tn hng triu USD mi nm x l v loi b spam mail. Thng k v spam trn th gii cho thy : 31 t l tng s spam c gi qua internet trong nm 2002, v 60 t vo nm 2006 (theo Bo co thng 1/2003 ca chnh ph Canada: Email marketing: Consumer choices and business opportunities).
36% l t l m spam chim trong tng s e-mail lu thng trn internet nm 2002, tng 8% so vi 2001 (http://www.cnet.com/). 42 spam/ngy l con s trung bnh mt a ch e-mail nhn. Theo nghin cu ca Cng ty Jupiter Research (M), con s tng ln thnh 70 vo nm 2007 (theo PC Magazine 5/2003). 2-3 USD/thng l chi ph ngi dng phi tr cho ISP kim sot spam (theo Information Week, 2000). 10 t Euro l tng s tin c tnh ngi dng e-mail trn ton th gii phi chi tr hng nm cho spam. 25% trong tng s spam mang ni dung khiu dm v rao bn cc sn phm, dch v lin quan. Trn 53% l tng s gi hot ng hng nm ca cc my ch e-mail phi dng x l spam v cc dng tn cng e-mail vo nm 2002 (theo cng ty Postini, chuyn cung cp cng ngh x l spam ). 74% l t l ngi dng internet tin rng ISP ca h phi c trch nhim x l spam (Cng ty Nghin cu Gartner Group). 36% l t l ngi dng phi thay i ISP gim bt s lng spam m h nhn (Cng ty Nghin cu Gartner Group). Spam l l do th t khin ngi dng thay i ISP: L do th nht l li kt ni, th hai l gi thnh, th ba l thng bo bn, th t l spam (theo SpamCon Foundation, 2002). i vi cc doanh nghip, cc chi ph trc tip phi tr bao gm phn cng my ch (khng gian a cng lu gi cc thng ip), bng thng (spam lm nghn mng hoc khin mng hot ng khng n nh) v chi ph nng cp my trm. Nhng hao tn thi gian xa cc spam mi l iu ng ni hn. Cc nh cung cp dch v internet (ISP) cng l nn nhn c bit ca spam bi chng lu thng trn mng thng xuyn, khin h phi lu tr hng triu th rc nh vy. Cc chuyn gia v spam lo ngi: Spam s lm thay i cch s dng e-mail v cu trc internet ton cu. 15 gi/nm l tng s gi mt ngi phi b ra xa spam vo nm 2003, so snh vi 2,2 gi/nm ca nm 2000 (theo Ferris Research ). 3.1.4 Phn loi Spam mail 3.1.4.1. Harvested address spam
y l loi spam ph bin nht. Spammer s dng gin ip hay spam bot kim tra hu ht cc a ch website trn internet. Spam bot s tm kim trong code ca mi trang web k t @. Khi n tm thy mt k t @, n bit rng n tm thy mt a ch email. Sau n s thu thp cc bit k cn k t @ ly c a ch email v thm vo trong c s d liu ca spammer, ni cha hng triu a ch thu thp c. T nhng a ch ny s nhn c rt nhiu spam. 3.1.4.2. Virus spam. My tnh ca mt ai b nhim loi virus ny. Khng may l trong address book ca h c cha a ch email ca bn. Virus s gi spam ti mi a ch c trong address book . 3.1.4.3. Domain name spam. Spammer cho rng hu ht cc website u s dng a ch email dng chung l sale@... hay info@... H ch vic gi spam n tt c cc email c chun chung nh vy ti mi tn min trn th gii. 3.1.4.4. Dictionary spam. i khi bn nhn c spam theo dng t in khi bn s dng mt dch v email ph bin. Spammer s to ra cc bin th t mt a ch email bng cch thay i mt vi k t, c nh th s to c hng nghn cc a ch khc nhau. 3.1.4.5. Window messenger spam. Bn c thy xut hin thanh pop up vi dng ch Messenger Service trn thanh tiu hay khng ? Nu c tc l bn c th nhn c Window messenger spam. 3.1.4.6. Hacked mail service spam. Mt vi ISP hay dch v webmail c th b hack bi cc spammer hay cc a ch mail c th b bn cho cc spammer. Cn c k nhng iu l khi ng k a ch mail. Tm xem c box no ni rng: Chng ti c th gi a ch email ca bn cho mt bn th 3, nh du vo y nu bn khng mun nhn nhng thng tin tip th t cc cng ty khc .. hay khng. 3.2 C ch hot ng ca Spam Mail.
gi c mt th rc i, ngi gi th rc phi thc hin 2 bc c bn l : thu thp a ch v pht tn th.Vy cch thc thu thp a ch email v k thut gi th rc ca Spammer nh th no. Di y l mt s bin php thu thp email, cng nh nhng k thut gi th rc m Spammer p dng : 3.2.1. Thu thp a ch email. Nhng k chuyn gi SPAM hay cn gi SPAMMER c rt nhiu cch thu thp a ch email. Ph bin nht l nhng cch sau y: Cch th nht l thng qua nhm tho lun (newsgroups) hoc phng chat (chat rooms) trn Internet, c bit l cc trang web cng thng tin in t nh AOL hay Yahoo. Vi nhng dch v nh th ngi dng thng vn s dng a ch email thc ng k ti khon. SPAMMER ch cn dng mt phn mm c bit l c th ly c a ch email ca rt nhiu ngi. Cch th hai l khai thc trc tip t Web. Hin c ti hng triu trang web trn Internet v SPAMMER ch cn s dng cc phn mm tm kim c kh nng ln tm k t @ trong cc trang web nh bn bit, y l k t i din cho a ch email. Kt qu l SPAMMER cng d dng c c v vn cc a ch email trong tay. Nhng phn mm nh vy thng c gi l cc SPAMBOT. Mt cch khc l SPAMMER to ra cc trang web c bit chuyn dng thu thp a ch email. V d, SPAMMER c th to ra mt trang web vi ta Win $1 million!!! Just type your e-mail address here! (Bn trng gii thng 1 t USD!!! Hy li a ch email ca bn!). c khng t ngi tr thnh nn nhn ca tr la o ny. Hu qu l hm th ca h b cht y th rc. Hay c nhng trang web to ra danh sch la chn email "Would you like to receive e- mail newsletters from our partners?" (Bn c mun nhn tin th t i tc ca chng ti khng?) Nu bn tr li Yes th ngay lp tc a ch email ca bn s c bn cho SPAMMER. Hoc SPAMMER c th thnh lp mt trang web cho ng k thnh vin s dng, m yu cu cung cp a ch email xc thc l yu cu ct li ca vic ng k. Trn thc t ch l mt cch thu thp a ch email.
Trc y, tng c rt nhiu cc trang web ln rao bn a ch email ca cc thnh vin. C l cch thc ph bin nht chnh l cch thc c gi l dictionary attack. y l phng thc lin quan n vic lp trnh cho mt chic my tnh c th to ra rt nhiu bin th t mt a ch email bng cch thay i cc k t - v d mike1@yahoo.com, mike2@yahoo.com, mike3@yahoo.com C mt m t dictionary attack nh sau: Dictionary attack s dng mt phn mm to mt kt ni n mt my ch th in t gi ln hng triu a ch email bt k. Rt nhiu trong s nhng cc a ch ch l nhng bin th ca mt a ch email v d jdoe1abc@hotmail.com v jdoe2def@hotmail.com. Phn mm s kim tra xem a ch email no cn sng, a ch s lt vo mt xanh ca SPAMMER. Cch thc cui cng v cng l cch d nht chnh l vic mua mt chic a CD c cha hng trm hng nghn cc a ch email t cc SPAMMER khc.V ri mt khi SPAMMER c c mt s lng a ch email tng i, chng s trao i vi cc SPAMMER khc v s c c nhiu i ch email hn. Chng bt u gi SPAM. 3.2.2 Pht tn email. Sau khi thu thp c hng trm ngn email bng cc cch trn. Bc tip theo Spammer pht tn th ti cc email thu thp c. Vic pht tn email c thc hin vi nhiu cch. SPAMMER cng c rt nhiu cch khc nhau c th gi i hng nghn hng triu cc bc th rc hp php c m bt hp php cng c. Cch th nht l SPAMMER phi b tin u t trang b cho mnh rt nhiu h thng my tnh, modem v kt ni mng Internet gi SPAM. y l mt cch thc hon ton hp php nhng c chi ph cao. Tuy nhin, kt qu em li s c th l hng chc nghn la tin li nhun thu v. Cch th hai r hn nhiu nhng li bt hp php v cng l cch thc nguy him nht i vi ngi dng. l cch gi SPAM thng qua nhng my ch u nhim m (open proxy servers). Ni n phng thc gi SPAM ny th cng l ni n cch thc SPAMMER b mt t nhp bt cc h thng my tnh ca ngi khc xy dng mt ci c gi l botnet.Zombie PC
Trc ht SPAMMER s s dng cng ngh v cc th on cn thit b mt ci t mt phn mm ln h thng ca ngi dng. l phn mm cho php SPAMMER c th kim sot c h thng my tnh ca nn nhn t xa - hay ni mt cch khc l SPAMMER bt cc c chic my tnh . Chic my tnh tr thnh mt th c gi l Zombie (thy ma). Khi c nhiu Zombie, SPAMMER s tin hnh xy dng mt h thng mng cc Zombie hay y chnh l h thng mng botnet. n y cch thc th hai ging vi cch thc th nht, ch khc mt iu l SPAMMER khng phi c tin ra mua cc h thng my tnh m chng i bt cc my tnh ca ngi khc. Cch thc gi SPAM th hai cng ni ln mt iu l ti sao SPAMMER ngy nay li tr thnh mt mi e do i vi mi ngi dng Internet v ti sao SPAM cng c xem l c hi khng km g cc phn mm c hi khc nh virus, su my tnh hay trojan. Bn nn bit c th t nhp thnh cng v bt cc h thng my tnh ca ngi dng th SPAMMER phi s dng cc k thut tn cng khai thc li bo mt khng khc g hacker hay cc kiu cch la o khng thu km g cc phisher. Phn mm gip SPAMMER tn cng v bt cc my tnh ca ngi dng t xa cng chnh l cc loi phn mm c hi virus, su my tnh hoc trojan. Ni mt cch khc gi y dng nh khng cn danh gii gia hacker v SPAMMER na, SPAM tr thnh cng c pht tn virus, su my tnh, trojan v ngc li chnh nhng phn mm c hi l cng c gi SPAM. Bn tng tng xem nh vi mt lng SPAM v cng ln gi i trn ton th gii mi ngy th nu h thng my tnh ca bn tr thnh mt Zombie th sao? PC ca bn s lin tc phi gi i cc email SPAM, ng truyn Internet v PC ca bn s chm i rt nhiu v mi ti nguyn u c SPAMMER khai thc s dng. Mt khc i khi bn cn c th tr thnh nn nhn ca cc c quan bo v php lut. V h c th d dng pht hin ra PC ca bn s dng trong cc v tn cng gi SPAM bt hp php nhng pht hin c SPAMMER th li l vn rt kh. Bn tr thnh nn nhn bt c d. Bn hy xem mt SPAM KING ng vua trong vic gi SPAM ni g nh: Ti chim quyn iu khin tng cng 190 my ch email 110
chic Southfield, 50 chic Dallas v 30 chic khc Canada, Trung Quc, Nga v n . Mi chic my tnh c th gi i 650.000 email mi gi, tng ng vi khong hn 1 t email mt ngy. Ngoi ra cn c nhng cng ty c thnh lp chuyn nhn cc hp ng nhn gi SPAM vi gi r. Nhng cng ty ny tuyn b h hon ton khng phi l SPAMMER v nhng khch hng ca h chp nhn nhn nhng email do h gi i. Nhng a ch email nh th ny thng c thu thp bng cch thc thu thp a ch email th 3 nh ni trn. 3.3. Chng Spam trn h thng mail server. Spam mail gy ra rt nhiu tc hi, v th vic phng chng v ngn chn spam mail l cn thit. Hin c nhiu cng ty phn mm cung cp cc gii php chng spam, mi dng sn phm c nhng tnh nng v u nhc im ring nhng hu ht cc sn phm hot ng u da vo mt s nguyn l sau :
3.3.1. S dng DNS Blacklist.
Hnh 3.1 : M hnh DNS Blacklist. Phng php s dng DNS black list s chn cc email n t cc a ch nm trong danh sch DNS blacklist. C hai loi danh sch DNS Blacklist thng c s dng, l : Danh sch cc min gi spam bit, danh sch cc min ny c lit k v cp nht ti a ch http://spamhaus.org/sbl. Danh sch cc my ch email cho php hoc b li dng thc hin vic chuyn tip spam c gi i t spammer. Danh sch ny c lit k v cp nht thng xuyn ti a ch http://www.ordb.org. C s d liu Open Relay Database ny c duy tr bi ORDB.org l mt t chc phi li nhun. Khi mt email c gi i, n s i qua mt s SMTP server trc khi chuyn ti a ch ngi nhn. a ch IP ca cc SMTP server m email chuyn qua c ghi trong phn header ca email. Cc chng trnh chng spam s kim tra tt c cc a ch IP c tm thy trong phn header ca email sau so snh vi c s d liu DNS Blacklist bit. Nu a ch IP tm thy trong phn ny c trong c s d liu v cc DNS Blacklist, n s b coi l spam, cn nu khng, email s c coi l mt email hp l.
Phng php ny c u im l cc email c th c kim tra trc khi ti xung, do tit kim c bng thng ng truyn. Nhc im ca phng php ny l khng pht hin ra c nhng email gi mo a ch ngi gi. 3.3.2. S dng SURBL List.
Hnh 3.2 : M hnh SURBL List. Phng php s dng SURBL pht hin spam da vo ni dung ca email. Chng trnh chng spam s phn tch ni dung ca email xem bn trong n c cha cc lin kt c lit k trong Spam URI Realtime Blocklists (SURBL) hay khng. SURBL cha danh sch cc min v a ch ca cc spammer bit. C s d liu ny c cung cp v cp nht thng xuyn ti a ch www.surbl.org. C nhiu danh sch SURBL khc nhau nh sc.surbl.org, ws.surbl.org, ob.surbl.org, ab.surbl.org..., cc danh sch ny c cp nht t nhiu ngun. Thng thng, ngi qun tr thng kt hp cc SURBL list bng cch tham chiu ti a ch multi.surbl.org. Nu mt email sau khi kim tra ni dung c cha cc lin kt c ch ra trong SURBL list th n s c nh du l spam email, cn khng n s c cho l mt email thng thng.
Phng php ny c u im pht hin c cc email gi mo a ch ngi gi nh la cc b lc. Nhc im ca n l email phi c ti xung trc khi tin hnh kim tra, do s chim bng thng ng truyn v ti nguyn ca my tnh phn tch cc ni dung email. 3.3.3. Kim tra ngi nhn. Tn cng spam kiu t in s dng cc a ch email v tn min bit to ra cc a ch email hp l khc. Bng k thut ny spammer c th gi spam ti cc a ch email c sinh ra mt cch ngu nhin. Mt s a ch email trong s c thc, tuy nhin mt lng ln trong l a ch khng tn ti v chng gy ra hin tng lt cc my ch mail. Phng php kim tra ngi nhn s ngn chn kiu tn cng ny bng cch chn li cc email gi ti cc a ch khng tn ti trn Active Directory hoc trn my ch mail server trong cng ty. Tnh nng ny s s dng Active Directory hoc LDAP server xc minh cc a ch ngi nhn c tn ti hay khng. Nu s a ch ngi nhn khng tn ti vt qu mt ngng no (do ngi qun tr thit lp) th email gi ti s b coi l spam v chn li. 3.3.4. Kim tra a ch.
Hnh 3.3 : M hnh Check Address. Bng cch kim tra a ch ngi gi v ngi nhn, phn ln spam s c pht hin v chn li. Thc hin kim tra a ch ngi gi trc khi email c ti xung s tit kim c bng thng ng truyn cho ton h thng. K thut Sender Policy Framework (SPF, www.openspf.org) c s dng kim tra a ch ngi gi email. K thut SPF cho php ch s hu ca mt tn min Internet s dng cc bn ghi DNS c bit (gi l bn ghi SPF) ch r cc my c dng gi email t min ca h. Khi mt email c gi ti, b lc SPF s phn tch cc thng tin trong trng From hoc Sender kim tra a ch ngi gi. Sau SPF s i chiu a ch vi cc thng tin c cng b trong bn ghi SPF ca min xem my gi
email c c php gi email hay khng. Nu email n t mt server khng c trong bn ghi SPF m min cng b th email b coi l gi mo. 3.3.5. Chn IP.
Hnh 3.4 : M hnh Chn IP. Phng php ny s chn cc email c gi n t cc a ch IP bit trc. Khi mt email n, b lc s phn tch a ch my gi v so snh vi danh sch a ch b chn. Nu email n t mt my c a ch trong danh sch ny th n s b coi l spam, ngc li n s c coi l email hp l. 3.3.6. S dng b lc Bayesian.
Hnh 3.5 : M hnh B lc Bayesian. B lc Bayesian hot ng da trn nh l Bayes tnh ton xc sut xy ra mt s kin da vo nhng s kin xy ra trc . K thut tng t nh vy c s dng phn loi spam. Nu mt s phn vn bn xut hin thng xuyn trong cc spam nhng thng khng xut hin trong cc email thng thng, th c th kt lun rng email l spam.
Trc khi c th lc email bng b lc Bayesian, ngi dng cn to ra c s d liu t kha v du hiu (nh l k hiu $, a ch IP v cc min...) su tm t cc spam v cc email khng hp l khc. Mi t hoc mi du hiu s c cho mt gi tr xc sut xut hin, gi tr ny da trn vic tnh ton c bao nhiu t thng hay s dng trong spam, m trong cc email hp l thng khng s dng. Vic tnh ton ny c thc hin bng cch phn tch nhng email gi i ca ngi dng v phn tch cc kiu spam bit. b lc Bayesian hot ng chnh xc v c hiu qu cao, cn phi to ra c s d liu v cc email thng thng v spam ph hp vi c th kinh doanh ca tng cng ty. C s d liu ny c hnh thnh khi b lc tri qua giai on hun luyn. Ngi qun tr phi cung cp khong 1000 email thng thng v 1000 spam b lc phn tch to ra c s d liu cho ring n. 3.3.7. S dng danh sch Black/white list.
Hnh 3.6 : M hnh Check Address. Vic s dng cc danh sch black list, white list gip cho vic lc spam hiu qu hn.Black list l c s d liu cc a ch email v cc min m bn khng bao gi mun nhn cc email t . Cc email gi ti t cc a ch ny s b nh du l spam.White list l c s d liu cc a ch email v cc min m bn mong mun nhn email t . Nu cc email c gi n t nhng a ch nm trong danh sch ny th chng lun c cho qua.
Thng thng cc b lc c tnh nng t hc, khi mt email b nh du l spam th a ch ngi gi s c t ng a vo danh sch black list. Ngc li, khi mt email c gi i t trong cng ty th a ch ngi nhn s c t ng a vo danh sch white list. 3.3.8. Kim tra Header.
Hnh 3.7 : M hnh Check Header. Phng php ny s phn tch cc trng trong phn header ca email nh gi email l email thng thng hay l spam. Spam thng c mt s c im nh: trng trng From: hoc trng To: Trng From: cha a ch email khng tun theo cc chun RFC. Cc URL trong phn header v phn thn ca message c cha a ch IP c m ha di dng h hex/oct hoc c s kt hp theo dng username/password (v d cc a ch: http://00722353893457472/hello.com, www.citibank.com@scammer.com). Phn tiu ca email c th cha a ch email ngi nhn c nhn ha email . Lu khi s dng tnh nng ny vi cc a ch email dng chung c dng nh sales@company.com.V d,khi mt khch hng phn hi bng cch s dng tnh nng auto-reply vi tiu your email to sales c th b nh du l spam. Gi ti mt s lng rt ln ngi nhn khc nhau. Ch cha nhng file nh m khng cha cc t nh la cc b lc. S dng ngn ng khc vi ngn ng m ngi nhn ang s dng. Da vo nhng c im ny ca spam, cc b lc c th lc chn.
3.3.9. S dng tnh nng Challenge/Response.
Hnh 3.8 : M hnh Challenge/Response. Tnh nng ny s yu cu ngi ln u gi email xc nhn li email u tin m h gi, sau khi xc nhn, a ch email ca ngi gi c b sung vo danh sch White list v t tr v sau cc email c gi t a ch c t ng cho qua cc b lc. Do spammer s dng cc chng trnh gi email t ng v h khng th xc nhn li tt c cc email gi i, v th nhng email khng c xc nhn s b coi l spam.Phng php ny c hn ch l n yu cu nhng ngi gi mi phi xc nhn li email u tin m h gi. khc phc nhc im ny, ngi qun tr ch nn s dng phng php ny i vi nhng email m h nghi ng l spam.
CHNG 4 : GII THIU ZIMBRA COLLABORATION SUITE V GII PHP CHNG SPAM MAIL C TRIN KHAI TRN MAIL SERVER ZIMBRA.
4.1 Tng quan v Zimbra. Zimbra nguyn l mt cng ty c lp v phn mm m ngun m c yahoo mua li vo nm 2007. iu cng chng t sn phm ca
cng ty c nh gi rt cao. Theo qung co trn website ca hng th hin c khong 60.000 t chc v 40 triu mailbox ang dng zimbra. Zimbra Collaboration Suite (ZCS) l mt phn mm cng tc gm c phn mm chy trn my ch v my trn c cc c im v tnh nng chnh sau : Th in t: l mt h thng th in t hon chnh gm Mail server(SMTP,POP3,IMAP,antivirus,antispam,openLDAP,backup, c y tnh nng nh auto-redy, auto-forward,mail fillter,) v mail client ( zimbra desktop v zimbra web client). Lch cng tc ( Calendar): lch c nhn v lch nhm,t ng gi mail mi hp. Danh mc cng vic ( task) : ca c nhn v c ca nhm. Ti liu ( Documents): ti liu di dng Wiki ca c nhn hoc tp th. Cp h s ( Brifcase): dng ring hoc dng chung. Chat : chat ni b trong mng Lan hoc trn Internet. Zimbra c 2 phn mm client: zimbra desktop v zimbra web client l giao din vi ngi dng . Zimbra desktop ( tng t nh Outlook,) ci c trn c windowns , Mac, Linux. Ngoi ra c teher dng cc email client khc nh Outlook, Evolution,hai loi mail client trn ng dng vi hai cch lm vic : 1) Lm vic online, dng zimbra webclient. Mi thng tim s sao lu trn my ch zimbra . Zimbra web client c hai giao din dng htlm thong thng, nhanh nhng t tnh nng v dng Ajax( tng t nh yahoo mail) Zimbra web client l mt trong nhng web client hon chnh nht hienj ny ( h tr hu ht tnh nng zimbra server k c chat). 2) Lm vic offline, dng ci mail client cn li . ring Outlook , Apple Desktop, Evolution c th ng b email , calendar, contacts, task vi my ch zimbra , cc mail client khc ch c v gi mail. Zimbra cng h tr lm vic vi cc thit b di ng nh Iphone,BlackberryZimbra c mt kho Zimlet ( mt th tng t nh cc exensions ca firefox) m cc qun tr mng c th chn ci t b xung tnh nng. Mi ngi u c th t vit cc zimlet kt ni vi h thng zimbra
vi cc h thng thng tin khc hoc m rng tnh nng . y c l l mt trong nhng im mnh nht v s gy nghin cho ngi dng ging tnh nng extensions ca Firefox vy. Qun tr h thng qua giao din web kh u v chi tit vi nhiu tin ch, v d c th to hng trm account trong vi pht. Zimbra c mt bn m ngun m (opensource) min ph v ba bn khc c thu ph. Bn t nht l 35 USD/usre/nm cho 25 ngi dng u. bn opensource c cc tnh nng s dng ging nh bn c ph , ch km mt s tnh nng ngi qun tr nhng c th b p bng cch t ci b xung v hon ton c th dng bn opensource vo cc h thng tht c. V kin trc bn trong , zimbra vn s dng cc b phn mm chc nng ( ngun m ) ph bin nh OpenLDAP , SpamAssassin,Amavisd,Tomcat.. cng vi mt s phn mm ring to ln mt h thng tch hp cht ch. C th khng dng OpenLDAP m dng Windowns Active Diretory, hoc import user t mt my ch Exchange sang.Hin ti,zimbra server c cc bn ci t trn Red Hat, Fedora,Centos,Debian,SUSE,Ubuntu v MacOS . nu ch ci trn mt my ch c lp th cch ci t kh n gin v nhanh. Zimbra c th ci theo nhiu cch cu hnh khc nhau t mt h thng nh vi trc Account trn mt my ch duy nht, cho n mt h thng rt ln hng nghn account trn nhiu my ch c cc chc nng khc nhau. C kh nng m rng ( scalability) bng cch thm my ch d dng. 4.2 Li ch ca Zimbra Collaboration Suite. Vic qun l khi lng ln cc giao dch v email trn cc h thng c lun gy ra nhiu kh khn cho nhng ngi s dng. iu g khin cho cc nh qun tr pht in ln khi th hoc cc hp th b mt? Bao nhiu nhn vin yu thch vic phi cun chut ln xung tm kim mt ni dung cn thit gia hng trm ngn bc th? Zimbra Collaboration Suite gii quyt mi vn m cc nh qun tr v ngi dng cui lun phi i mt. 4.2.1. i vi nh qun tr . tin cy cao : Vic di chuyn, sao lu v khi phc mailbox ca c nhn hay nhm c thc hin trc tuyn vi tc nhanh hn.
Hiu qu v chi ph : Qun l lu tr theo phn cp gip tit kim thi gian. D dng bo tr : Tch hp n gin vi Microsoft Active Directory v cc ng dn LDAP c sn. Kh nng m rng : Cc dch v web c tch hp vi ng dng doanh nghip c sn. Nhiu trong mt : Chc nng chn virus v spam c tch hp sn. Qun l a cp : Qun l lu tr phn cp hoc qun l vng i thng tin (HSM / ILP) : + H tr nhiu tn min v qun tr trn 1 giao din. + Khi phc mailbox trc tuyn. + Di chuyn v sao lu mailbox trc tuyn. + Gii php tch hp mc sn sng cao. + Giao din qun tr trn nn AJAX (chy trn cc trnh duyt, h iu hnh). + Bng iu khin cho cc tc v h thng thi gian thc. + Cng c dng lnh thng minh. + SOAP API cho cc thao tc qun tr. Hp nht my ch v lu tr : Gim thc t trong lu tr qun l - 1 bn sao ca email v file nh km mi my ch (thay v 1 bn sao cho mi ngi dng hoc mi nhm lu tr. Tng thc t s lng ngi dng mi CPU Ti u ho v lu tr a cp ca h thng bn di : Kh nng tng thch vi c s h tng hin c : Cc dch v web Tch hp a chiu vi cc ng dng doanh nghip nh CRM, ERP...Client Outlook, di ng, IMAP, POP, iCalendar, RSS,...Tch hp Active Directory/LDAP, h tr d liu.My ch th cc cng c di chuyn v cng cng tc (bao gm Microsoft Exchange) Bo mt : M hnh bo mt web: Truy nhp n, TLS/SSL, khng yu cu VPN.Tch hp SpamAssassin v ClamAV.Tng thch vi cc chng trnh chn spam, virus hin ti (thng qua Postfix & amavisd-new) Gii php m : M ngun m.nh dng m.
4.2.2. i vi ngi dng cui. Hp l : Web client trn nn AJAX i mi vi cc cng c tm kim, chia s lch lm vic v email c tch hp vi s a ch v lch cng vic. linh hot cao : S dng giao din web, Microsoft Outlook, hoc Apple. Kt ni lin tc : H tr cc thit b di ng thng minh: Blackberry (thng qua cc gii php i tc), Treo.... Nhiu la chn : H tr cc my tnh Windows, Apple v Linux. Tit kim thi gian : Zimlet gip n gin ho cc tc v. Nhiu la chn thit b : Trnh duyt nn AJAX Zimbra.My tnh c nhn - Outlook (Online, Offline, lu cache), Apple Mail v iCal, Eudora, Evolution, Thunderbird/Sunbird, RSS...Di ng Cc thit b khng dy: Blackberry (thng qua gii php i tc), Palm, Nokia, Motorola, Good, PocketPC... Kh nng t chc mailbox : Tm kim nhanh, hiu qu (bao gm mail v file nh km).Lu tr kt qu tm kim theo th mc.Sp xp theo mch trao i.Cc b lc. Lch lm vic : Ln k hoch nhm, c kim sot thi gian bn/rnh.Mi ngi dng c th to nhiu lch.Chia s lch cng vic.Xem nhiu lch.Nhp lch t ngun khc theo nh dng .ics. D dng m rng cho vic kt ni ni dung th vi cc dch v v ng dng web bn ngoi.Intranet - ERP, CRM, H tr, Ti chnh, Nhn s, in thoi VoIP...Internet - Google/Yahoo Maps, Skype, Travel, Package Tracking.... Chuyn i bi cnh tin li : Xem/to cc cuc hn nhanh trong khi ang mail.To/chnh sa cc contact nhanh trong khi ang mail.Xem website ca ngi gi trong mail nhanh chng.Mi trng chia s cng tc hin i.RSS/ATOM feeds.Tag. 4.2.3. Tnh nng h thng. Cc tnh nng ca h thng th tn v cng tc Zimbra thch hp vi mi loi hnh kinh doanh, v cc doanh nghip thuc mi kch c. Zimbra
Collaboration Suite ti iWay c thit k nhm nng cao chc nng trao i, qun l v chia s email, ti liu, cc chng trnh cng vic hng ngy ca cc bn. Web client : Trnh duyt a dng da trn giao din AJAX vi cc tnh nng mnh nh ng dng, chng hn chc nng ko th. Gn nhn v sp xp theo mch trao i gip qun l cc hp th dung lng ln d dng. Tm kim a cp ton din, to lp cc th mc cha kt qu tm kim. Chia s v kt ni cng tc trn mi ng dng: th, lin lc, lch lm vic, ti liu, cng vic thc hin. Lch lm vic kt ni chung ton b doanh nghip cho php kim tra thi gian bn rnh. Son v qun l ti liu trc tuyn bao gm cc loi nh nh, bng, biu. Chat ni b: danh sch bn b, trao i v lu tr cuc chat. Tch hp Zimlet t cc ng dng th ba nh bn , CRM, theo di kim k t chng trnh Zimbra. Giao din web HTML chun gip truy cp d dng v h tr mi loi trnh duyt. Qun tr : Bng iu khin AJAX v giao din dng lnh nhm qun l ZCS. Chng trnh chuyn i cho Exchange, Domino, GroupWise, thm chun IMAP. Sao lu v phc hi cc hp th ton thi gian. Qun l lu tr theo phn cp v theo cm. Tm kim gia cc hp th vi tnh nng lu tr phc v kim tra d liu nh k. Tch hp chng trnh chn spam, virus. Giao din API / REST dch v web m. H tr qun tr ti a cho Zimbra On-demand v Zimbra On-site. Zimbra desktop :
Cho php truy cp ngay c khi khng c kt ni Internet ti Zimbra v tp hp cc ti khon POP/IMAP khc cng trong mt chng trnh Zimbra. Cc thit b di ng : Kt ni ti thit b BlackBerry thng qua b kt ni Zimbra cho BlackBerry Enterprise Server (BES). Kt ni ti Windows 5+, Palm, v cc in thoi thng minh vi h iu hnh Symbian. Kt ni ti cc thit b J2ME ph dng nh Motorola RAZR 2. Truy cp email, s a ch, lch lm vic trn Zimbra trn bt k thit b no c trnh duyt web html. Trnh duyt h tr : Microsoft Internet Explorer, Mozilla Firefox, Apple Safari cho Microsoft Windows, Apple OS X, v Linux desktops. H iu hnh my ch : Red Hat, SUSE, Ubuntu, Fedora, Debian, rPath Linux, Mac OS X, VMware Virtual Appliance. H tr cc chng trnh bn th ba : Microsoft Outlook v Entourage, Mozilla Thunderbird, Apple Mail, Apple iCal, Apple Address Book, Mozilla Sunbird, Novell Evolution. Giao thc h tr : MAPI, IMAP, POP, XML, HTTP/S, SOAP, LDAP, SIP, VoIP, iSync, RSS, Atom, iCal, CalDAV, WebDAV (beta). Mi trng cng tc : Zimbra CS c thit k nh mt gii php kinh doanh tp trung vo vic h tr bn tng kh nng hiu sut v tnh thc thi ca h thng. iWay cung cp cho bn nhng tnh nng phc v trao i vi nhng khung gi hp l. Hn c email, cn l h thng hiu nng gip bn t chc cc cuc hn, duy tr lch v danh sch cng vic, m bo bn lun lun gi c thng tin lin lc mi nht vi ng nghip, bn b v gia nh. Email : Cng vi tc pht trin nhanh v mnh ca Internet, vic s dng email trong cc giao dch hng ngy cng tr thnh nhu cu thit yu. ng
dng email Zimbra c thit k tin li mang ti cho ngi dng s quen thuc v tin cy - nhng yu t khng th thiu ca mt h thng email. Cu trc theo mch trao i, thun tin cho vic lu tr v tm kim. Qun l email theo th mc v nhn. Qun l nhiu ti khon email trong mt chng trnh. Truy cp d dng trn cc thit b cm tay. Lch lm vic : Ko v th cc cuc hn vo trong lch ca bn nhanh chng v d dng. Ko di hoc rt ngn cc cuc hn ngay c khi bn ang xem theo khung ngy hoc tun. Xem lch ca tt c cc thnh vin trong cng ty, t chc ca bn. Thm a ch email c bit cho thng bo hn. Lin h : Theo di trc tuyn tt c cc lin h bn ang c vi h thng Zimbra.Bn c th to v qun l mt s a ch in t : To nhiu th mc lin h khc nhau v t chc theo phn loi (v d: Cng vic, Gia nh, Bn b...). T ng nhp a ch t s a ch ca bn khi son tho th. H tr LDAP cho php bn s dng cc lin h ca mnh trong cc chng trnh duyt mail khc. Nhp v xut cc lin h t bt k ngun no bn c. T ng a vo danh sch trng cc lin h ca bn do chng khng bao gi b lit thnh th rc hoc spam. Qun l Cng vic : H qun l cng vic ca Zimbra gip bn ln lch u tin v theo di c danh sch cc vic cn thc hin. u tin cc nhim v c nhn v/hoc nhm. Xem trng thi hon thnh cng vic. Thit t nhc nh. p ng thi hn hon thin Chia s : y l chc nng then cht trong mi trng cng tc. Bn c th chia s vi bt c ai trong nhm ca mnh cc chng trnh sau: Th.
Lch. Cng vic. Ti liu. S a ch. Cc th mc. Documents : Chc nng ny gip ngi dng son tho d dng cc ti liu vn bn hoc bng tnh. Ngoi ra n cn gip bn in trc tip vn bn va son tho hoc gi cho cc a ch mail khc. Briefcase : Zimbra cho php ngi dng thng qua chc nng ny lu d liu ln my ch v truy sut trc tip d bn ang online hay offline. Nh thay v gi li cc tp tin nh km trong th in t bn c th chuyn chng vo trong Zimbra Briefcase d dng s dng bt k u. 4.3. Module chng Spam trong Zimbra. B sn phm Zimbra Collaboration Suite tch hp mc nh b lc spam vo my ch vi cc cng c m ngun m SpamAssassin v DSPAM. 4.3.1 Gii thiu Spam Assassin . SpamAssassin l m un lc th rc m ngun m c dng kh rng ri trn th gii. SpamAssassin c xy dng bi Apache,sn phm ny c ng dng hn nm nm v c lin tc cp nht pht trin bi cng ng m ngun m. SpamAssassin l m un m ngun m vit bng Perl v C/C++ rt linh ng, c th tch hp vo h thng khc nhau. Hin ti, SpamAssassin tch hp thnh cng vi cc my ch th in t nh SendMail, Qmail, Poffix, Exim, Ngoi ra, SpamAssassin c th chy trn Windows trn nn Perl. V vy kh nng ng ng ca SpamAssassin l rt ln. Mt khc, SpamAssassin cn c h tr bi nhiu t chc v ngi dng trn ton th gii. C th, ngoi ting Anh, SpamAssassin cn c pht trin cc b lut cho nhiu ngn ng cc quc gia khc nhau.C th l : Ting Php (http://maxime.ritter.eu.org/Spam/french_rules.cf), Ting c (http://zmi.at/x/70_zmi_german.cf), TingTrung, (http://www.ccert.edu.cn/spam/sa/Chinese_rules.cf) Ting Nht, Brazin. Cc tp lut cho nhiu lnh vc khc nhau nh chng qung co thuc, chng cc th la o, cc th pht tn Virus.)
SpamAssassin lc th rc da trn cc phng php hiu qu hin nay, l dng Blacklist/ Whitelist, h thng phn loi Bayesian, cc danh sch t ng, v tp lut cu hnh ca ngi dng. Trong , lc Bayesian l phng php hiu qu v c kh nng p dng c cho cc h thng lc th rc ca cc ngn ng khc nhau trn th gii. SpamAssassin s dng rt nhiu cc tp lut khc nhau kim tra xem mt bc th c phi l th rc hay khng. Phn mm khng phi ch da vo mt s cc c im n l ca th rc kt lun email l th rc hay khng m thc hin tnh ton im s mt cch ton din. Khi ch s ny vt qu mt ngng im (threshold) no th email s b coi l mt th rc. SpammAssassin bao gm 3 chc nng chnh : Kim tra Header (Kim tra tnh hp l ca Header). Phn tch ni dung (Tm cc cm t xut hin trong th tnh ton). Kim tra Blacklist.. Da trn c s nh du m cc chng trnh hot ng trn cc my trm mi c th thc hin cng vic x l nhng th b nh du (xa, phn loi vo hp th ring).
4.3.2 C ch hot ng ca Spam Assassin. Hot ng trn c s cc lut. Thc hin nhng phn tch heuristic trn phn u th ( mail header), v trn nhng t v nhm t trong ni dung th (mail body). S dng phng php Bayes lc th. Cc mail c nhn nh sai l spam c gi l ham. B lc Bayes s c nhng th mc lu tr cc spam v ham v c nhng thng k v t hay nhm t (gi l cc token) c trng cho spam v cho ham. Da vo , b lc s cho im i vi mt mail no , im dng cho nhng t c tnh cht spam v im m cho t thuc dng ham. T ng duy tr danh sch a ch cho php/cm ( automatic whitelist (AWL)/blacklist).AWL lu tr a ch ngi gi, IP ca ngi gi cng vi im spam trung bnh ca ngi trong nhng ln gi trc y. Khi c
mt mail mi n, spamassassin truy cp vo AWL bit im spam trung bnh ca ngi gi. Nu im trung bnh cao (xc sut l spam cao), th im spam ln ny ca mail s c cng thm, ngc li im spam s c gam bt. Cho php ngi dng t nh ngha cc danh sch a ch cho php/cm (manual whitelist/blacklist). Cho php hot ng kt hp vi cc c s d liu v a ch spam c sn. DNS Blocklists. Kh nng hc (learning). SpamAssassin c kh nng hc da trn tp hp cc spam mail v ham mail iu chnh cch cho im khi nh dng spam. Vic ny c thc hin bng lnh : sa-learn --spam <path> sa-learn --ham <path> C th thao tc trn nhiu b k t (character set and locale) Khi c xc nh l spam, mail s c nh du bng th spam ( spam tag), Sau , mail s c ng dng MUA (mail user-agent) thc hin lc mail. SpamAssassin cng h tr vic gi cc bo co v spam mail cho cc kho c s d liu hp tc (collaborative filtering databases), v d nh Vipul's Razor ( http://razor.sourceforge.net/ ). SpamAssassin tiu tn nhiu ti nguyn trn Server : CPU, b nh, thi gian x l,, nht l x l nhng tp tin c kch thc ln. M hnh thit k h thng mng khi p dng SpamAssassin tt nht l nn t SpamAssassin v Procmail trn mt Postfix Server x l ring.
Hnh 4.1: Quy trnh chuyn th ca SpamAssassin Procmail l chng th dng phn phi th ti ngi dng. Procmail x l th da trn cc lut c khai bo trong tp /etc/.procmailrc. Khi s dng kt hp vi SpamAssassin, ban u Procmail s gi thc thi chng trnh SpamAssassin tnh im, sau khi x l, th s c chuyn ti cc th mc thch hp. 4.3.3. Cc thnh phn chnh ca Spam Assassin. Khi ci t Spam Assassin th ta s c cc thnh phn sau : Cc m-un vit bng Perl . Cc hm chnh ca SpamAssassin nm trong cc m-un vit bng Perl. Phn quan trng nht l Mail::SpamAssassin, l m un mc cao nht gi n cc m-un khc, v m-un Mail::SpamAssassin::Conf cha cc ti liu ca cc tp cu hnh cho SpamAssassin. Cc m-un trn thng c ci trong th mc nh /usr/lib/perl5/site_perl/5.8.1, nhng bn khng cn bit v tr ca chng, perl s m bo l chng ci vo th mc m Perl s tm kim khi cn n. SpamAssassin 3.0 gii thiu mt s khc bit gia cc m-un chnh ca SpamAssassin v cc m-un plug-ins c vit bi cc hng khc. Tn ca
cc m-un c t phn cp theo Mail::SpamAssassin::Plugin (V d Mail::SpamAssassin::Plugin::URIDNSBL). Tp lut. Tp lut m SpamAssassin s dng quyt nh xem mt thng ip c phi l th rc khng c gi trong cc tp cu hnh trong thu mc /usr/share/spamassassin. Bn c th tm thy v tr ca cc tp ny bng lnh sau : ( Ta c th i th mc c). spamassassin --local --debug Tp cu hnh chung. Cc tp cu hnh chung iu khin cc hnh vi mc nh ca spamassassin (v spamd) khi khng c cc ci t trn tng ngi dng. Tp l local.cf v c ci trong /etc/mail/spamassassin. Cc ng dng khc s dng m-un Mail::SpamAssassin cng thng t tp cu hnh chung trong th mc ny. Spamassassin Chng trnh SpamAssassin vit bng Perl chp nhn cc th di dng chun u vo, p dng hm ca Mail::SpamAssassin, tr v th l chun u ra cng vi im spam, cc bo co, cc chnh sa khi ph chun. N c mt s hm khc m t trong phn sau. SpamAssassin thng c ci trong th mc /usr/bin. spamd v spamc Trong h thng nhn mt s lng ln th, chy mt on m SpamAssassin cho mi th l rt tn km. Do , chng ta s chy mt dch v (daemon), khi ng lc khi ng h thng, thng trc trong b nh v thc hin kim tra th. N lng nghe trn c Socket Unix ln cng TCP nhn cc yu cu kim tra th, thc hin kim tra th v tr v kt qu cho cc yu cu. Spamc l chng trnh client cho h thng chy Spamd. N chp nhn cc th l chun u vo, chuyn cho spamd, v tr v di dng chun u ra. Ging nh spamassassin, n thc hin vi tng bc th nhng n c vit di C v c bin dch, do trnh c phi chy thng qua Perl. N cung cp cc hm cn thit ca spamassassin.spamc v spamd thng c ci trong /usr/bin.. sa-learn
Thnh phn c s dng hun luyn h thng phn loi th rc da trn l thuyt Bayesian. N dy h thng cch phn bit mt th l mt th rc hay l th sch. 4.3.4. Cu hnh c bn. Tp cu hnh : /etc/mail/spamassassin/local.cf .Dng ch thch bt u bng # dng cu hnh bt u bng t kha.V d : skip_rbl_checks. Cc t kha l: required_hits (SpamAssassin 2.63) ( Hay l required_score (SpamAssassin 3.0) ) Khi xt mi lut ca SpamAssassin cho th, th tng im ca th s c cng hoc tr ty thuc vo lut c ng hay khng. Khi tng im vt qu gi tr required_hits th th c co l th rc. Gi tr mc nh l 5, n kh ph hp vi cc ci t thng thng. report_safe Tham s ny xc nh cch SpamAssassin x l vi th nu th c xc nh l th rc. Cho d tham s ny c c t hay khng th SpamAssassin thm vo Header ca th cc thng tin: o X-Spam-Level: S du * biu din cho im ca bc th. o X-Spam-Status: Dng m t im ca th v cc lut kim tra th rc tha mn o X-Spam-Flag : Gi tr Yes. Khi report_safe c t bng 0, thn ca th s c gi nguyn, cn Header c thm phn X-Spam-Report c thm vi cc m t chi tit ca cc lut tha mn. Cn khi report_safe t bng 1, mt th MIME (Multipurpose Internet Mail Extension) c to ra vi cc thng tin bo co c thm vo nh l mt phn nh km vo th gc vi content-type l message/rfc822. Khi report_safe c t bng 2, l tng t nh trng hp bng 1 nhng vi content-type l text/plain. rewrite_subject ( ch c SpamAssassin 2.x ) Nu tham s ny c t bng, SpamAssassin s thm "*****SPAM*****" vo trc tiu nu th c xem l th rc. N s
thun tin khi ngi dng c cc chng trnh mail clients m ch kim tra cc thng tin Header chun. rewrite_header ( ch c SpamAssassin 3.0 ) Tham s ny c s dng xc nh xem c th ghi li thng tin Subject, From, v To trong Header khi th c xem l th rc. V d: rewrite_header subject *****SPAM***** th chui *****SPAM***** s c thm vo u Subject, From, To nu l th rc skip_rbl_checks SpamAssassin thng kim tra a ch IP ca ngi gi trong cc blacklist (Domain Name System (DNS)-based real-time blacklists -DNSBLs or RBLs) xc nh xem n c c lit trong cc danh sch cc ngun th rc cc proxy m cc relay, cc host dial-up. Rt nhiu ISP thc hin cc kim tra ngay MTA ca n t chi ngay cc kt ni t cc danh sch trn. Nu bn lm nh vy, bn c th trnh cho SpamAssassin phi kim tra v t n v 1, mc nh s l 0- tc SpamAssassin c kim tra. Lut s dng trong SpamAssassin . Biu thc chnh quy : Regular Expression l mt cng c rt hu hiu trong lp trnh dng x l cc chui hay vn bn. Hu ht cc ngn ng lp trnh u h tr n, c bit Perl, mt ngn ng rt mnh trong vic x l chui v vn bn. Chng ta s bn n cc quy tc v cng dng ca Regular Expression trong Perl v p dng cho vic xy dng v kim tra lut ca SpamAssassin. Cu trc lut ca SpamAssassin : Hu ht cc lut hay cn gi l cc test ca SpamAssassin thng c nhng thnh phn c bn sau: Tn lut, cu thnh bi ch ci hoa, s, gch di. di ti a l 22 k t. Lut bt u bng T_ l k hiu lut ang c th nghim Dng m t, cha ti 50 k t dng SpamAssassin bo co.
Mt t kha xc nh v tr ca bc th c kim tra. C th p dng cho header,body, URI trong thn th. Khi th lut vi thn th, c th thc hin kim tra trng thi th (cha tin x l thn th), sau khi MIME-decoding, sau khi MIME-decoding v loi th HTML, sau khi loi b cc k t trng, xung dng v ngha. Mt dng m t du hiu cn phi tm kim. Chng hn nh mt thng tin Header, mt Regular expression ca perl, mt Blacklist truy vn, hay mt hm ca SpamAssassin cn tnh Mt c xc nh xem lut c c p dng hay khng Gi tr im ca lut. C mt gi tr ny c th lun c s dng hoc c 4 gi tr dng trong 4 trng hp khc nhau: o Khi phn loi Bayesian v kim tra mng khng c s dng. o Khi phn loi Bayesian khng c s dng cn kim tra mng. c s dng o Khi phn loi Bayesian c s dng cn kim tra mng khng c s dng. o Khi phn loi Bayesian v kim tra mng u c s dng. Cc tp cha tp lut thng c t trong /usr/share/spamassassin v c ui l .cf. Chng ta s xem xt mt vi lut in hnh .Lut kim tra xem From c bt u bng hai ch s hay khng : header FROM_STARTS_WITH_NUMS From =~ /^\d\d/ describe FROM_STARTS_WITH_NUMS From: starts with nums Quy tc to cc lut. i vi h thng sinh lut ca chng ta thng l kim tra s xut hin ca mt t kha, chng ta dng Regular expression c dng /^\s*Dear Friend\b/i. V d: bodyDEAR_FRIEND/^\s*Dear Friend\b/i DEAR_FRIEND /^\s*Dear Friend\b/i describeDEAR_FRIEND Dear Friend? That's not very dear ! DEAR_FRIEND Dear Friend? That's not very dear! scoreDEAR_FRIEND0.542 DEAR_FRIEND 0.542
V d trn l mt v d in hnh cho mt lut ca SpamAssassin, c th lut ny p dng cho body ca cc bc th. N gm 3 phn : Body : L phn ch ra tn v Regular Expression p dng cho th. trng hp trn c tn l DEAR_FRIEND vi biu thc l /^\s*Dear Friend\b/i Describe : L phn ch ra tn v m t ca lut. v d trn m t c tn l DEAR_FRIEND v m t ca lut l Dear Friend? That's not very dear! Score : L t kha ch ra tn lut v im ca lut c theo sau ngay n. Trong trng hp trn, lut DEAR_FRIEND c gn im l 0.542. Cc b phn v cc ch th tng ng trong lut : Bng 6 : Cc b phn ca th v cc ch th
Cc b phn ca th v cc ch th. B phn Ch th Cc kim tra c th thc hin Tha mn mt regexp Khng tha mn mt regexp Tn ti hay khng nh gi bng m lnh ca Perl Kim tra thng tin Received trong header bng DNSBL Tha mn mt regexp nh gi bng m lnh ca Perl Tha mn mt regexp nh gi bng m lnh ca Perl Tha mn mt regexp nh gi bng m lnh ca Perl Tha mn mt regexp
Headers
header TESTNAME
Tiu th v phn text ca th, gii m tt c cc phn MIME, lt body cc th HTML v loi k t xung TESTNAME dng Phn text ca ni dung th, gii m tt c cc phn MIME, vn gi rawbody nguyn th HTML v k hiu xung TESTNAME dng Ton b thn ca th, cha gii m full cc phn MIME TESTNAME Cc URI trong thn th uri
Cc b phn ca th v cc ch th. B phn Ch th TESTNAME uridnsbl TESTNAME Kim tra a ch qua DNSbased blacklist( SpamAssassin 3.0) Cc kim tra c th thc hin
Cc URI trong thn th
Chng ta c bng cc c v ngha ca cc c : Bng 7 : Cc c trong lut ca Spam Assassin.

Cc c trong lut ca SpamAssassin. C net learn userconf nice noautolearn ngha Lut da trn mng s khng c chy nu SpamAssassin c cu hnh ch chy cc lut cc b Lut cn c hun luyn trc khi dng Lut cn c ngi dng cu hnh trc khi s dng Lut s cho im m (Spamassassin 3.0) Lut s khng c p dng cho im ca th rc khi xc nh th c hc t ng nh l mt th rc hoc th sch
V d : Ta chn lut RCVD_IN_BL_SPAMCOP_NET t.Kim tra thng tin Received trong header ca th qua DNS-based blacklist ti bl.spamcop.net c vit : header RCVD_IN_BL_SPAMCOP_NET eval:check_rbl_txt('spamcop', 'bl.spamcop.net.') describe RCVD_IN_BL_SPAMCOP_NET Received via a relay in bl.spamcop.net tflags RCVD_IN_BL_SPAMCOP_NET net Cui cng, sau khi thm vo cc lut,bn nn chy lnh spamassassin lint kim tra chnh t ca tp lut. Lnh ny c gng phn tch cc lut trong tp cu hnh v tp lut. Nu c li th s c bo c th tng dng. Cc tp lut xy dng sn ca SpamAssassin :
SpamAssassin xy dng hn 700 lut cho ngn ng ting Anh v hn 2900 lut cho cc ngn ng khc. Hin ti ngn ng c SpamAssassin 3.0 h tr l ting Php v ting c. Vic nghin cu cc tp lut ny c ngha quan trng trong chin lc xy dng v hun luyn to ra b lut p dng cho cc th rc vit trong ngn ng ca quc gia bn.Cc lut trong SpamAssassin c lu gi th mc /usr/share/spamassassin bao gm: 10_misc.cf : Tp lut 10_misc.cf nh ngha cc mu cho cc bo co th rc m SpamAssassin nh km co cc th rc. 10_plugins.cf (SpamAssassin 3.0) : Tp cu hnh ny cung cp mt s ch thun tin np cc m un thm vo ca SpamAssassin vi ch th loadplugin. 20_fake_helo_tests.cf : Tp cu hnh ny xc nh mt tp lut kim tra cc HELO hostname gi mo. 20_body_tests.cf : Tp lut kim tra thn ca th, spam clearinghouses, ngn ng ca th v v tr a l ca th. 20_dnsbl_tests.cf : Tp lut ny thc hin kim tra cc DNS blacklists.S dng cc hm check_rbl( ), check_rbl_sub( ), v check_rbl_txt( ). Cc blacklist ny gm
c cc a ch chnh :
NJABL (http://www.dnsbl.njabl.org/) SORBS (http://www.dnsbl.sorbs.net/) OPM (http://opm.blitzed.org/) Spamhaus (http://www.spamhaus.org/sbl/) DSBL (http://dsbl.org) Spamcop (http://www.spamcop.net/bl.shtml) MAPS (http://www.mail-abuse.org) 20_ratware.cf and 20_anti_ratware.cf : Tp lut 20_ratware.cf kim tra cc du hiu c bit ca cc th c s dng bi cc chng trnh gi th hng lot ( gi l ratware or spamware). Hu ht, chng ta kim tra cc thng tin ca header v phi bit c c im ring ca cc phn mm gi th
20_head_tests.cf :
Tp lut kim tra cc thng tin trong header, bao gm kim tra cc danh sch a ch en v a ch trng trong thng tin From and To 20_porn.cf (cho tt c cc phin bn ca SpamAssassin ) v 20_drugs.cf (SpamAssassin 3.0) : Tp lut cha cc lut kim tra cc du hiu ca cc th khiu dm, vn ha phm c hi, th phn ng, th qung co thuc,.. trong ni dung th. Ngn ng ca th l ting Anh. 20_phrases.cf : Tp lut ny cha cc cm t thng thng ca th rc trong ting Anh. Hu ht chng hng dn bn cch rt khi cc mailing list hoc hng dn bn chnh li hoc cu hnh li cc lut cho hp th ca mnh 20_uri_tests.cf : Tp lut kim tra cc du hiu trong URI trong ni dung th. 20_compensate.cf : Tp lut to ra nhm mc ch b cho cc lut sai trong khi kim tra header v lut vi c nice (im m). 20_html_tests.cf : Tp lut kim tra cc th HTML trong ni dung th 20_meta_tests.cf : Tp lut cha cc siu lut, c kt hp t nhiu lut khc nhau. 23_bayes.cf : Tp lut c sinh ra bi phng php lc th rc da trn l thuyt xc sut Bayes. Chng ta s lm r phng php ny sau. 25_head_tests_es.cf, 25_body_tests_es.cf, 25_head_tests_pl.cf, 25_body_tests_pl.cf (SpamAssassin 2.6x) Cc tp lut dnh cho th rc ting Ty Ban Nha (es) v Ba Lan (pl). 25_uribl.cf (SpamAssassin 3.0) : Tp ny np cc URIDNSBL plug-in kim tra cc URI trong danh sch DNS en. 30_text_*.cf (de,es,fr,it,pl,sk) : Cc tp lut ny khng nh ngha lut mi m l cc bn dch ca cc lut trong ting Anh ra cc ting ca nc khc. Chng hn German (de), Spanish (es), French (fr), Italian (it), Polish (pl), and Slovak (sk).
50_scores.cf
Tp lut ny nh ngha im gn vi tt c cc lut trong cc tp khc. Cc im c c lp cc tp bi v n c to ra bi thut ton p dng mi lut cho s lng ln cc th rc v th sch nhm iu chnh cc im t c sai s nh nht 60_whitelist.cf : Tp lut cha danh sch sch cc a ch ca cc t chc ln nh Amazon.com, yahoo.com,.. Cc tp lut gii thiu trn l cc lut sn c ca SpamAssassin, mc ch ca chng ta l xy dng cc lut p dng cho cc th rc ting Vit v ch yu l ni dung v tiu ca th. Do , s kt hp gia cc lut xy dng sn ca SpamAssassin v lut lc th rc ting Vit p dng cho cc h thng trong nc l bin php hiu qu m kinh t. Whitelist/Blacklist : Whitelist/Blacklist l l mt phng php ph bin ca tt c cc h thng chng th rc. N lit k tt c cc a ch th c c php v khng c php gi hoc nhn. M-un ny thng c t trc cc m-un lc theo ni dung khc (content filtering). Cch cu hnh rt n gin, chng ta ch cn thm cc ch nh sau vo tp cu hnh ca ngi dng: V d: whitelist_from boss@mybigclient.com Hoc c th dng *,? : whitelist_from *@mybigclient.com Hay : blacklist_from blacklist_from support@microsofts.com Autowhitelist- Danh sch t ng : Autowhitelist l thut ton lp danh sch t ng da vo cc th nhn trong qu kh ca h thng. Da vo vic thng k cc c im cc th nhn c v xc nh c l Spam hay Ham, gii thut ny s thc hin vic cho im cho tng th xc nh loi ca bc th.
Thng thng cc thng tin c ghi li l cc thng tin trong Header ca th v IP ca my gi th. thun li cho qu trnh thao tc, chng ta lu cc d liu ca phng php ny bng SQL nh sau: CREATE TABLE awl ( username varchar(100) NOT NULL default '', username varchar(100) NOT NULL default '', email varchar(200) NOT NULL default '', ip varchar(10) NOT NULL default '', ip varchar(10) NOT NULL default '', count int(11) default '0', count int(11) default '0', totscore float default '0', totscore float default '0', PRIMARY KEY (username,email,ip) PRIMARY KEY (username,email,ip) ) TYPE=MyISAM; Trong : username : Lu tr tn hoc a ch th ca ngi dng. email : Lu a ch th ca ngi gi c th ang c theo di. ip : Cha IP ca ngi gi. count : Cha s th gi bi ngi gi c a ch trn. totscore : Cha tng im Spam ca th nhn c t ngi gi . 4.3.4. S hot ng lc th rc.
Hnh 4.2: S lc th rc ca SpamAssassin
4.3.5. Chng Spam trong Zimbra . Tng t nh gii php AV, ZCS cng tch hp b lc spam vo my ch vi cc cng c m ngun m SpamAssassin v DSPAM. Nhng cng c ny h tr theo di nhng g ang xy ra (ci g l spam, ci g khng l spam) v cho php cc t chc ti u ha s thc hin trong mi trng ca ring h. Mi gi c kch hot trong khi ci t ZCS, nhn nhng bn cp nht thng l v b theo di spam t ng lc spam bng cch chuyn cc tin nhn vo v ra khi cc th mc khng c gi tr.
Nhng cch chn trn khng cn xem n ni dung ca th m chn c hn 95% s th spam. Do khng cn phi xem ni dung th nn khng hao tn ti nguyn my. Vn cn mt t spam mail i qua c cc hng ro trn. lc nhng th ny, mail server dng Spamassassin c qua ni dung th v nh gi mc spam da trn nhiu c im ca tng th. Nhng c im l : Th t ni gi i qua cc my no n ni nhn, cc my c ng tin cy khng. Cc dng header l bnh thng hay c du hiu ca cc chng trnh gi th hng lot. Dng Subject c khc thng khng: ton ch hoa, nhiu khong trng lin nhau Ni dung c cha nhiu t qung co khiu dm, thuc, trng s S cc c im trn l hu hn, trong khi c im ca th spam li thay i rt nhanh. pht hin ra nhng th spam mi th Spamassassin to ra mt database cc t v nhm t thng gp trong th spam v th thng, l database Bayes. Mi th nhn vo s c tra xem cc t v nhm t trong th c trong database Bayes khng chm im, v mi khi nh gi mt th l sch Spamassassin cng s a cc t v nhm t ca th vo database Bayes. Nhng t v nhm t trong database Bayes qu lu (64 ngy) m khng gp li th cng b loi ra khi database. Ni dung database Bayes khng c sn khi mi ci t Spamassassin, trc khi dng database Bayes th Spamassassin phi c t nht 200 th spam v 200 th thng. S th thng th Spamassassin t hc nh ghi trn cn s th spam th ngi dng phi dy cho Spamassassin. Khi c dy 200 th spam th database Bayes mi bt u c tc dng. c 200 th spam th ngi dng phi ct li nhng th spam nhn, hoc nu cha c sn th phi gi nhng th spam sp nhn c cho Spamassassin hc theo cch di y. Spamassassin cn m th ra v phn tch ni dung th nn n cn dng nhiu ti nguyn my hn cc hng ro trn. Nh vy ta thy rng mail server tn rt t cng chn hn 90% th spam nhng li tn nhiu cng hn chn vi phn trm cn li. Mc d tn nhiu cng, Spamassassin cng khng th pht hin ht mi th spam, vn cn vi th spam i c n hp th
ngi dng. gip Spamassassin pht hin nhng th spam tng t sp gi n, ngi dng phi tch cc phn hi nhng trng hp lt li . Nu ngi dng khng phn hi th Spamassassin vn tng lm rng nhng th spam lt li l th sch. phn hi nhng th lt li th ngi qun tr mail server phi t mt hp th ngi dng phi chuyn th spam n hp th. V d spammail@mydomain.com.vn theo cch trong trang sau http://wiki.apache.org/spamassassin/ResendingMailWithHeaders (rt tic l Outlook Express khng lm c theo cch ny, m phn ln ngi dng li dng Outlook Express). Vi Outlook Express th phi lm theo cch trong trang sau http://wiki.apache.org/spamassassin/SiteWideBayesFeedback. on lin quan n Outlook Express c chp li di y : Create a *new* mail message in Outlook/Express. Resize the windows so that you can see both your new message as well as the main O/OE window. Select the messages you want to send as Spam or Ham (probably not both in the same message) and drag them "into" the new message. This will send all the messages as attachments to the main email. Th gi n spammail@mydomain.com.vn s c giao cho sa-learn a vo database Bayes. Nu ngi qun tr cn thn th nn m tng th trong spammail@mydomain.com.vn ra coi trc khi giao cho sa-learn. Ngoi database Bayes, Spamassassin cn c th tra v bo th spam vo cc database trong Internet l Razor, Pyzor, Dcc. Trn y l nhng cch chn th spam n gin, t tn cng ca ngi qun tr v ngi dng. Nu cc cch trn vn cha chn ht th spam, c th dng thm cc access list ca mail server chn nhng th c du hiu c th. dng access list th phi tn cng c v nhn ra du hiu ring ca th spam. D cho lm ht mi cch, vn c th cn khong 1% th spam lt vo c n hp th ca ngi dng v th spam lun lun thay i, rt kh on trc c. Phn trn l cch chn th spam i vo mail server. khng b a vo cc blacklist th mail server cng cn phi chn th spam i ra. iu ny c bit cn thit nu l mail server cng cng nh mail server ca cc ISP.
4.3.6. Cc File cu hnh quan trng ca Spam Assassin. $USER_HOME/.spamassassin Th mc lu gi cc cu hnh, khai bo ca ngi dng nh file user_pref, whitelist $USER_HOME/.spamassassin/user_prefs $USER_HOME/.spamassassin/bayes* C s d liu thng k c dng khi tin hnh lc theo phng php Bayes. C th to c s d liu chung cho tt c mi ngi dng bng cch t cc tham s "bayes_path" v "bayes_file_mode". /opt/zimbra/conf/spamassassin/local.cf L file cu hnh dng t thm cc lut v cc quy nh v cch tnh im spam.
4.4 Trin khai ng dng Mail Server Zimbra trn h iu hnh CentOS.V kh nng chng Spam ca Zimbra. M hnh trin khai :
Hnh 4.3. M hnh trin khai tng quan.
Hnh 4.4 : M hnh trin khai chi tit M hnh ti ca em n gin bao gm : Mt my ch Linux lm Mail Server v DNS Server.Mt my Client s dng h iu hnh Windows XP truy cp vo giao din qun l ca Zimbra.H thng yu cu c Internet ci t DNS Server,download gi ci t Zimbra.
M hnh c th bao gm : My server c ci t Centos 5.6 Final vi a ch IP l 192.168.1.101. My Client ci t h iu hnh Windows XP vi a ch IP l 192.168.1.63. ng mng c Net : 192.168.1.0/24. Trn my Server ci t Zimbra v DNS Server. Domain Name Local ca mail zimbra l : hienhai.com. Cu hinh b lc Spam Cc bc trin khai : S dng h iu hnh my ch Linux : CentOS 5.8 Final. S dng phin bn Zimbra Collaboration Suite Open Source Edition 7.2.0 dnh cho nn tng Red Hat Enterprise Linux 5. Stop cc dch v tng la (iptables, ip6tables) v sendmail c sn trn h thng. Khng cho cc dch v ny khi ng theo cng h thng. Disable SELinux trn h thng. Ci t cc gi sysstat, gmp, libidn, libstdc++, sqlite, perl v nc. Ci t DNS Server. Chnh sa file /etc/hosts.Khi ci t th Zimbra s tm file ny cu hnh. Ci t Zimbra. Cu hnh Spam Assassin s dng Blacklist. Dng mu th Spam kim tra kh nng chng Spam ca Zimbra.
KT LUN
Sau thi gian ba thng tm hiu,nghin cu v thc hin n em tm hiu c cc vn sau :
Kt qu t c. 1. Hiu r c cc khi nim trong th tn in t,cc giao thc,kin trc,li ch m th in t mang li.Tm hiu cc vn an ton thng tin trong th tn c t.V cc gii php m bo an ton cho h thng my ch th tn in t. 2. Nghin cu v tm hiu Spam Mail.Khi nim,c ch hot ng.T a ra gii chng li Spam.V tm hiu cc cng ngh chng Spam hin nay. 3. Tm hiu sn phm ng dng thc t l b sn phm Zimbra.Hiu r khi nim,cch thc trin khai sn phm ng dng vo thc t. 4. ng dng module chng Spam trong Zimbra l Spam Assassin : Bin dch v trin khai Zimbra trn h iu hnh Linux. Cu hnh Spam Assassin s dng Blacklist. Dng mu th kim tra kh nng chng li Spam ca Zimbra. 5. Trin khai thc t : M hnh gm 2 my ch Mail Server Zimbra v 2 tn min ni b l hienhai.com v mvcorp.vn. Cc vn cha lm c. 1. Cha trin khai h thng Mail Server Zimbra trn thc t. 2. Cha lp trnh c module chng Spam ring cho Zimbra. 3. Cha th ht c cc lut trong Module Spam Assassin. Hng pht trin. 1. Trin khai my ch Mail Server cho cc doanh nghip trong thc t. 2. Ti u ha v th cc lut Module Spam Assassin trong Zimbra. 3. Lp trnh Module chng Spam bng ngn ng Perl.
TI LIU THAM KHO

Ti liu ting Anh : 1. Zimbra-OS-Admin-Guide-7-1. Tc gi : VMware, Inc.
2. 3. 4. 5. 6.
http://spamassassin.apache.org/. http://en.wikipedia.org/wiki/SpamAssassin. http://www.zimbra.com/forums/forum.php. http://www.evilangelist.com/?p=665. http://wiki.apache.org/spamassassin/CustomRulesets
Ti liu ting Vit : 1. http://vnpro.org/forum/showthread.php/12922-Ch%E1%BB%91ngspam-b%E1%BA%B1ng-SpamAssassin. 2. Hng dn s dng Zimbra ca phng : Qun tr thng tin trng i Hc Hoa Sen. 3. Bi ging An ton th tn in t ca Trng Hc Vin K Thut Mt M. 4. http://www.phanblogs.info/2010/03/phoi-hop-cac-cach-chan-thuspam.html.
PH LC
Ci t Zimbra Collaroration Suite v gii php chng Spam Mail c trin khai trn Mail Server Zimbra.Cu hnh Spam Assassin v kim tra kh nng chng Spam ca Zimbra.
1. Chun b trc khi ci t. Stop cc dch v tng la (iptables, ip6tables), v sendmail c sn trn h thng : # service sendmail stop. # service iptables stop. # service ip6tables stop. Khng cho cc dch v ny khi ng theo cng h thng : # chkconfig sendmail off. # chkconfig iptables off. # chkconfig ip6tables off. Disable SELinux trn h thng : # vi /etc/sysconfig/selinux Sa gi tr SELINUX=disabled nh hnh di :
Lu file v khi ng li h thng. Kim tra li trng thi SELinux,iptables,ip6tables v sendmail. # sestatus
# service iptables status
# service ip6tables status
# service sendmail status
m bo h thng ci t cc gi sysstat, gmp, libidn, libstdc++, sqlite, perl v nc c ci t trn h thng.
Thng th cc gi trn hu nh c sn khi ci t h iu hnh CentOS.Ta kim tra nu thiu gi g th ci bng lnh : # yum install [ Tn gi ] 2. Ci t DNS Server . Ci t Bind Chroot DNS Server : [root@hienhai ~]# yum install bind-chroot y To 1 file /var/named/chroot/var/named/hienhai.com vi ni dung :
[root@hienhai ~]# vi /var/named/chroot/var/named/hienhai.com
To RNDC key : [root@hienhai ~]# rndc-confgen -a -c /etc/rndc.key
Sau ,hin th ni dung ca RNDC key bng lnh sau : [root@hienhai ~]# cat /etc/rndc.key
Sa file /var/named/chroot/etc/named.conf thnh : [root@hienhai ~]# vi /var/named/chroot/etc/named.conf
Khi ng dch v DNS : [root@hienhai ~]# /etc/init.d/named start
Cho dch v DNS khi ng cng h thng : [root@hienhai ~]# /etc/init.d/named start
Trc khi,kim tra hot ng ca DNS Server.Mnh phi tr v chnh a ch ca my ci DNS Server : [root@hienhai ~]# cat /etc/resolv.conf
Kim tra dch v DNS : [root@hienhai ~]# host -t mx hienhai.com
[root@hienhai ~]# host -t ns hienhai.com
Trn y l nhng bc c bn cu hnh DNS Server. mt Mail Server hot ng c th phi c mt DNS Server phn gii tn min cho n.M hnh ca chng ta y l Mail Server v DNS Server c ci t trn cng mt my. Bc tip theo ta cn chun b trc khi ci t Zimbra l chnh sa file /etc/hosts.Khi ci t th Zimbra s tm file ny cu hnh : [root@hienhai ~]# vi /etc/hosts
4. Ti v ci t ZCS-7.2.0 trn h iu hnh CentOS 5.6 Final. Ti bn ci t Zimbra mi nht ti http://www.zimbra.com/downloads/osdownloads.html. y mnh s dng phin bn Zimbra Collaboration Suite Open Source Edition 7.2.0 dnh cho nn tng Red Hat Enterprise Linux 5. [root@hienhai ~]# wget http://files2.zimbra.com/downloads/7.2.0_GA/zcs7.2.0_GA_2669.RHEL5.20120410001957.tgz Sau ,ta tin hnh gii nn : [root@hienhai Desktop]# tar zxf zcs7.2.0_GA_2669.RHEL5.20120410001957.tgz Chuyn ti th mc ta va gii nn : [root@hienhai Desktop]# cd zcs-7.2.0_GA_2669.RHEL5.20120410001957 V ta tin hnh ci t bng lnh : [root@hienhai zcs-7.2.0_GA_2669.RHEL5.20120410001957]# ./install.sh --platform-override V Zimbra cung cp mt nh gi ci t l dnh cho Red Hat.V vy c th chy c thnh cng file ci t trn CentOS th chng ta cn phi thm on --platform-override nh trn. Zimbra s kim tra kh nng p ng cc yu cu ci t ca h thng sau khi chy ln trn. Nu khng c li g x ra th ta c kt qu nh hnh di. Nhn Y thc hin ci t.
Chn cc gi ci t cn thit cho Zimbra Mail Server :
Ti menu ci t: + Nhn 3 ti ti khon admin@hienhai.com + Nhn 4 thit t password cho ti khon admin va to + Nhn a apply + Nhn s lu li cu hnh Cc bc ci t nh hnh
Qu trnh ci t Zimbra thnh cng. vo giao din qun tr ta c th vo theo cch sau : https://192.168.1.101:7071/zimbraAdmin/.
Giao din qun tr chnh ca Zimbra nh sau :
vo giao din qun tr ta c th vo theo cch sau : http://192.168.1.101.
5. Kim tra trng thi hot ng,tt,khi ng v khi ng li Zimbra bng dng lnh nh sau : [zimbra@mvcorp root]$ zmcontrol status
[zimbra@mvcorp root]$ zmcontrol stop. [zimbra@mvcorp root]$ zmcontrol start. [zimbra@mvcorp root]$ zmcontrol restart. 6. Cu hnh Spam Assassin s dng Blacklist. M File cu hnh ca Spam Assassin : [zimbra@mvcorp ~]$ vim /opt/zimbra/conf/spamassassin/local.cf
Thm vo dng sau : blacklist_from info@hienhai.com
Khi ng li Zimbra : [zimbra@mvcorp root]$ zmcontrol restart.
7. Kim tra kh nng phn ng vi Spam ca Zimbra. S dng phn mm Email Sender Deluxe Spam.Vi mu th Spam nh sau : XJS*C4JDBQADN1.NSBN3*2IDNEN*GTUBE-STANDARDANTI-UBE-TEST-EMAIL*C.34X .Mu th Spam ny c ly t trang ch ca Spam Assassin : http://spamassassin.apache.org/gtube/. Bc 1 :
Bc 2 : Cho mu th Spam vo ni dung th :
V y l kt qu cui cng .

An-Ti Spam On Zimbra

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

An-Ti Spam On Zimbra

Uploaded by

Copyright:

Available Formats

MC LC

PH LC.......................................................................................83 DANH MC K HIU,CH VIT TT

Simple Mail Transfer Protocol Giao thc truyn ti th n gin

CHNG I. KHI NIM CHUNG V H THNG TH IN T

Mall Rcpt Data

Lnh Rset Vrfy Noop Quit Send

Sendmail Cao Qmail Trung bnh

CHNG 3 : GII THIU V SPAM.

3.3.1. S dng DNS Blacklist.

3.3.9. S dng tnh nng Challenge/Response.

Cc URI trong thn th

Chng ta c bng cc c v ngha ca cc c : Bng 7 : Cc c trong lut ca Spam Assassin.

Hnh 4.2: S lc th rc ca SpamAssassin

Hnh 4.3. M hnh trin khai tng quan.

TI LIU THAM KHO

http://spamassassin.apache.org/. http://en.wikipedia.org/wiki/SpamAssassin. http://www.zimbra.com/forums/forum.php. http://www.evilangelist.com/?p=665. http://wiki.apache.org/spamassassin/CustomRulesets

# service iptables status

# service ip6tables status

# service sendmail status

m bo h thng ci t cc gi sysstat, gmp, libidn, libstdc++, sqlite, perl v nc c ci t trn h thng.

[root@hienhai ~]# vi /var/named/chroot/var/named/hienhai.com

To RNDC key : [root@hienhai ~]# rndc-confgen -a -c /etc/rndc.key

Sa file /var/named/chroot/etc/named.conf thnh : [root@hienhai ~]# vi /var/named/chroot/etc/named.conf

Khi ng dch v DNS : [root@hienhai ~]# /etc/init.d/named start

Kim tra dch v DNS : [root@hienhai ~]# host -t mx hienhai.com

[root@hienhai ~]# host -t ns hienhai.com

Chn cc gi ci t cn thit cho Zimbra Mail Server :

Giao din qun tr chnh ca Zimbra nh sau :

vo giao din qun tr ta c th vo theo cch sau : http://192.168.1.101.

Thm vo dng sau : blacklist_from info@hienhai.com

Khi ng li Zimbra : [zimbra@mvcorp root]$ zmcontrol restart.

Bc 2 : Cho mu th Spam vo ni dung th :

You might also like