H-Sphere Admin Guide

Mail Server Settings
(version 2.4 and higher)
 

You can configure general and antispam Qmail settings directly from the H-Sphere web interface:

  1. Select Mail Servers from the E.Manager menu:

  2. Click the Action icon in the Mail Server Settings section:

  3. Edit qmail settings following on-screen explanations and click Submit:

    • tcpsessioncount: the number of concurrent SMTP connections.
      Default: 40. After setting this parameter, Qmail restart is required.
    • concurrencyremote: the number of qmail-send processes of message delivery to remote addresses.
      Default: 100. Max: 500. If Max is exceeded, Max value is set.
    • concurrencylocal: the number of qmail-send processes for message delivery to local addresses.
      Default: 50. Max: 500. If Max is exceeded, Max value is set.
    • databytes: maximum size of a message.
      Default: 0 (unlimited).
    • queuelifetime: the message queue lifetime in seconds.
      Default: 604800 (1 week).
    • bouncefrom: the email user messages are bounced from.
      Default: MAILER-DAEMON;
    • maxrecepients: maximum number of recipients in the "TO:", "CC:", and "BCC" fields.
      Default: 0 (unlimited).
    • timeoutsmtpd: TCP connection timeout in seconds.
      Default: 1200.
    • newline: accept or reject mail from mail user agents (MUA) that send commands without CR (carriage return).
      Default: 0 (disabled);
    • stripsinglequotes: enable or disable stripping single quotes (referred to in the spamcontrol manual as the feature that may cause unpredictable results).
      Default: 0 (disabled);
    • lowercase: enable or disable conversion of mail address to lowercase; it may be useful in filtering patterns, for case-sensitive rules.
      Default: 0 (disabled).

      •  

      The following are antispam settings, which combine original SMTP parameters and parameters introduced in the antispam addons:

    • badmailfrom: list of sender addresses whose emails will be rejected. A line in badmailfrom may be of the form @host, meaning every address at host.
      Default: the badmailfrom file is absent (all sender addresses are allowed);
    • badmailpatterns: the same as standard badmailfrom but with patterns. Example: 
                        *@earthlink.net
                  !fred@earthlink.net
                  [0-9][0-9][0-9][0-9][0-9]@[0-9][0-9][0-9].com
                  answerme@save*
                  *%*;
      Default: the badmailpatterns file is absent (all sender addresses are allowed);
    • badmailfrom-unknown: if the domain part of sender's address matches a host in this list, qmail checks if sender's IP has a PTR record. Example
      Default: the badmailfrom-unknown file is absent (reverse DNS check is disabled for all IPs);
    • badrcptto: list of recepient addresses for which all mail is blocked. A line in badrecipient may be of the form @host, meaning every address at the host.
      Default: the badrcptto file is absent (no recepient addresses are blocked);
    • badrcptpatterns: the same as badrcptto but with patterns. It allows qmail-smtpd to reject SPAM E-Mail including the signature 
                        *\[dd.dd.dd.dd\]*
      in the badrcptpatterns file, where dd.dd.dd is the IP address in brackets. Default: the badrcptpatterns file is absent (no recepient addresses are blocked);
    • blackholedsender: the same as badmailpatterns but quits the session immediately even if quitasap is disabled;
    • relayclients: list of IP addresses of clients allowed to relay mail through this host. Addresses in relayclients may be wildcarded: 
                        192.168.0.1:
                  192.168.1.:
      Default: the relayclients file is absent (all client IPs are allowed to relay mail via this host);
    • relaydomains: list of host and domain names allowed to relay mail through this host. This is an additional mail relay check by the domain name, in case if relay via the tcp.cdb static relay database is forbidden.
      Addresses in relaydomains may be wildcarded: 
                        heaven.af.mil:
                  .heaven.af.mil:
      Default: the relaydomains file is absent (all domains are allowed to relay mail);
    • relaymailfrom: list of senders ("Mail From:") allowed to relay independently even if open relay is closed. Entries in relaymailfrom can be E-Mail addresses, or just the domain (with the @ sign). Unlike relaydomains, native addresses should be entered. Examples: 
                        joeblow@domain1.com
                  @domain2.com
      Default: the relaymailfrom file is absent (no senders are allowed to relay independently).
      Important: For antispam security reasons, we strongly recommend not to add this parameter to SMTP configuration.
    • quitasap: enables (1) or disables (0) quitting SMTP session immediately if one of the above rules works.
      Default: 0 (no quitting);
    • tarpitcount: the number of recepients after which qmail switches on delay before sending the message to the next portion of recipients.
      Default: 0 (no tarpitting);
    • tarpitdelay: tarpitdelay is the time in seconds of delay to be introduced after each subsequent RCPT TO:.
      Default: 5.
    • ( in 2.4 beta 7) mfdnscheck: enables (1) or disables (0) DNS check of domain name in sender's address. If enabled, no local domain check is performed.
      Default: 0 (disabled);
    • nomfdnscheck: list of domain names that aren't checked for existence. The list has the same format as for relaymailfrom.
      Default: the nomfdnscheck file is absent (if mfdnscheck is enabled, all domains are checked for existence);
    • ( in 2.4 beta 7) userchk: enables (1) or disables (0) check that the vpopmail recipient is valid before accepting the message.
      Default: 0 (disabled);
    • smtpauth: enables SMTP AUTH extension.
      Default: 0 (AUTH LOGIN/PLAIN SMTP extension is disabled);
    • smdcheck: allows only local domains in the MAIL FROM address if mail is sent remotely.
      Default: 0 (any sender address is allowed);
    • authsender: demands that domain name in the user address during SMTP authentication should coincide with the domain name in the MAIL FROM address field.
      Default: 0 (any sender address is allowed);
    • popbeforesmtp: allows simultaneous POP-BEFORE-SMTP and SMTP AUTH authentication and uses the one that was established first.
      Default: 1 (POP-BEFORE-SMTP mode is on).
      Important: To allow POP-BEFORE-SMTP, set this parameter to 1.
    • rblhosts: RBL (Remote Black List) database hosts. Example: 
                        dnsbl.njabl.org
                  spamguard.leadmon.net
      Default: the rblhosts file is absent (RBL check is disabled: no external RBL databases is being checked).

    See also Qmail Configuration Overview of the sysadmin guide.

 


© Copyright 1998-2004. Positive Software Corporation.
All rights reserved.