1 Topic by tomwho

  • tomwho
  • Member
  • Offline
  • Registered: 2017-09-28
  • Posts: 17

Topic: Preventing Mail Abuse

How good is iRedMail out of the box in keeping abuse to a minimum? For example:

  • I don't want users with email accounts to be able to send spam emails.

  • I want to be sure my email users can't get overwhelmed with spam.

  • I don't want my server to be used as a relay for spammers.

Do I need to do anything else to my system to prevent the above? Can I limit how many emails a user sends per day or how many recipients each email is sent to? Or is that already built-in? If so, where do I control that?


============ Required information ====
- iRedMail version (check /etc/iredmail-release): 0.9.7 MARIADB edition
- Linux/BSD distribution name and version: CentOS 7.4.1708
- Store mail accounts in which backend (LDAP/MySQL/PGSQL): MySQL
- Web server (Apache or Nginx): Apache
- Manage mail accounts with iRedAdmin-Pro? No
====

----

Spider Email Archiver: On-Premises, lightweight email archiving software developed by iRedMail team. Supports Amazon S3 compatible storage and custom branding.

2 Reply by ZhangHuangbin

  • ZhangHuangbin
  • ZhangHuangbin
  • iRedMail Developers
  • Offline
  • Registered: 2009-05-06
  • Posts: 31,163

Re: Preventing Mail Abuse

tomwho wrote:

I don't want users with email accounts to be able to send spam emails.

Mail server uses softwares to detect whether an email is a spam, so there's always false alarm, more ore less -- no matter which antispam system/software you use.

tomwho wrote:

I want to be sure my email users can't get overwhelmed with spam.

iRedMail has DNSBL services enabled to figure spams, also greylisting, white/blacklists, etc. so this is fine.

tomwho wrote:

I don't want my server to be used as a relay for spammers.

Default iRedMail setting is not open relay.

tomwho wrote:

Can I limit how many emails a user sends per day or how many recipients each email is sent to? Or is that already built-in? If so, where do I control that?

Built-in, offered by iRedAPD. For technical details and instruction to set the limit, please read the comment lines in plugin source file:
https://bitbucket.org/zhb/iredapd/src/d … hrottle.py

If you are running the full-featured web admin panel, iRedAdmin-Pro, you can easily manage the throttling. There're global, per-domain and per-user (highest priority) throttle settings. Screenshot of iRedAdmin-Pro below.

http://www.iredmail.org/images/iredadmin/system_throttling.png