TNG LIN ON LAO NG VIT NAM TRNG I HC TN C THNG KHOA CNG NGH THNG TIN

BO CO SEMINAR

MN :CHUYN MNG TI: Tm hiu v xy dng h thng Mail an ton

GV: V THNH LONG

Danh sch thnh vin nhm : H v tn Lng Ngc Ho Nguyn Hu Lun Trng Trng Nguyn V Tn Ti Phm Thanh Cng MSSV 51003053 51003089 51003113 51003155 51003013

Mc lc
I/ Gii thiu h thng Mail: ............................................................................................................... 2 1/ Cc thnh phn trong h thng Mail: ......................................................................................... 2 2/ Mt s h thng mail: ................................................................................................................ 4 II/ Cc giao thc c s dng trong h thng Mail: ........................................................................ 5 1/ SMTP(Simple Mail Transfer Protocol): .................................................................................... 5 2/ Post Office Protocol: .................................................................................................................. 7 3/ Internet Message Access Protocol: ............................................................................................ 8 4/ MIME: ....................................................................................................................................... 8 5/ X.400: ........................................................................................................................................ 9 III/ Mt s phng thc chng spam mail :....................................................................................... 9 1/ SPAM L G: ............................................................................................................................ 9 2/ S DNG DNS BLACKLIST:................................................................................................. 9 3/ S DNG SURBL LIST: ....................................................................................................... 10 6/ CHN IP: ................................................................................................................................ 11 7/ S DNG DANH SCH BLACK/WHITE LIST:................................................................. 11 8/ KIM TRA HEADER: ............................................................................................................ 12 IV/ Xy dng h thng mail an ton vi Mdaemon : ...................................................................... 12 1/ Gii thiu Mdaemon: ............................................................................................................... 12 2/ V sao chn Mdaemon xy dng h thng Mail: ................................................................ 12

I/ Gii thiu h thng Mail:

1/ Cc thnh phn trong h thng Mail:
Mt h thng mail thng thng t nht c 2 thnh phn l mail server v mail client c th nh v trn hai h thng khc nhau hay trn cng mt h thng.Ngoi ra,cn c nhng thnh phn khc nh mail gateway v mail host. M hnh h thng emal y cc thnh phn l:

Mail Gateway Mt mail gateway l mt my kt ni gia cc mng dng cc giao thc truyn thng khc nhau hoc kt ni cc mng khc nhau dng chung giao thc.V d mt mail gateway c th kt ni mt mng TCP/IP vi mt mng chy b giao thc Systems Network Architecture (SNA). Mt mail gateway n gin nht dng kt ni hai mng dng chung giao thc hoc mailer.Khi mail gateway chuyn mail gia domain ni b v cc domain bn ngoi.

Mail Host Mt mail host l my gi vai tr my ch mail chnh trong h thng mng.N dng nh thnh phn trung gian chuyn mail gia cc v tr khng kt ni trc tip c vi nhau. Mail host phn gii a ch ngi nhn chuyn gia cc mail server hoc chuyn n mail gateway. Mt v d v mail host l my trong mng cc b LAN c modem c thit lp lin kt PPP hoc UUCP dng ng dy thoi.Mail host cng c th l my ch ng vai tr Router gia mng ni b v mng Internet.

Mail Server Mail Server cha mailbox ca ngi dng, nhn mail t mail client gi n v a vo hng i gi n mail host.Mail Server nhn mail t mail host gi n v a vo mailbox ca ngi dng. Ngi dng s dng NFS (Network File System) gn kt (mount) th mc cha mailbox trn mail server c mail.Nu NFS khng c h tr th ngi dng phi login vo mail server nhn th. Trong trng hp mail client h tr POP/IMAP v trn mail server cng h tr POP/IMAP th ngi dng c th c th bng POP/IMAP.

Mail Client L nhng chng trnh h tr chc nng c v son tho th, mail client s dng 2 giao thc SMTP v POP, SMTP h tr tnh nng chuyn th t client n mail server, POP h tr nhn th t mail server v mail client.Ngoi ra,mail client h tr cc giao thc IMAP,HTTP thc thi chc nng nhn th cho ngi dng. Cc chng trnh mail client thng c s dng nh: Microsoft Outlook Express, Microsoft Office Outlook, Eudora..

2/ Mt s h thng mail:
H thng mail cc b Cu hnh h thng mail n gin gm mt hoc nhiu trm lm vic kt ni vo mt mail server.Tt c mail u chuyn cc b.

H thng mail cc b c kt ni ra ngoi H thng mail trong mt mng nh gm mt mail server, mt mail host v mt mail gateway kt ni vi h thng bn ngoi, khng cn DNS Server.

H thng hai domain v mt gateway Cu hnh di y gm hai domain v mt mail gateway.Trong cu hnh ny,mail server, mail host v mail gateway(hoc gateways)cho mi domain hot ng nh mt h thng c lp. qun tr v phn phi mail cho hai domain th dch v DNS buc phi c.

Mi quan h gia Mail v DNS Server Dch v DNS v Mail l hai dch v c mi quan h mt thit vi nhau.Dch v Mail da vo dch v DNS chuyn mail t mng bn trong ra bn ngoi v ngc li.Khi chuyn mail, Mail Server nh DNS xc nh my ch no cn chuyn mail n.

II/ Cc giao thc c s dng trong h thng Mail:

H thng Mail c xy dng da trn mt s giao thc sau: Simple Mail Transfer Protocol (SMTP), Post Office Protocol (POP), Multipurpose Internet Mail Extensions (MIME) v Interactive Mail Access Protocol (IMAP ) c nh trong RFC 1176 l mt giao thc quan trng c thit k thay th POP, n cung cp nhiu c ch tm kim vn bn, phn tch message t xa m ta khng tm thy trong POP.

1/ SMTP(Simple Mail Transfer Protocol):

SMTP l giao thc tin cy chu trch nhim phn pht Mail, n chuyn Mail t h thng mng ny sang h thng mng khc, chuyn Mail trong h thng mng ni b. Giao thc SMTP c nh ngha trong RFC 821, SMTP l mt dch v tin cy, hng kt ni( connection-oriented) c cung cp bi giao thc TCP(Transmission Control Protocol ), n s dng s hiu cng (well-known port) 25. Sau y l danh sch cc tp lnh trong giao thc SMTP.

 s dng cc lnh SMTP ta dng lnh telnet theo port 25 trn h thng xa sau gi Mail thng qua c ch dng lnh. K thut ny thnh thong cng c s dng kim tra h thng SMTP Server.

SMTP l h thng phn pht mail trc tip t u n cui(t ni bt u phn pht cho n trm phn pht cui cng), iu ny rt him khi s dng. hu ht h thng mail s dng giao thc store and forward nh UUCP v X.400, hai giao thc ny di chuyn Mail i qua mi hop, n lu tr thng ip ti mi hop v sau chuyn ti h thng tip theo, thng ip c chuyn tip cho ti khi n ti h thng phn pht cui cng.

iu quan trng ca chun SMTP l gi nh my Client phi dng giao thc SMTP gi th in t cho mt my ch lun lun hot ng. Ngi nhn s n ly th t my ch bng giao thc POP (Post Office Protocol).

2/ Post Office Protocol:

POP l giao thc cung cp c ch truy cp v lu tr hp th cho ngi dng.

C hai phin bn ca POP c s dng rng ri l POP2, POP3. POP2 c nh ngha trong RFC937, POP3 c nh ngha trong RFC 1725. POP2 s dng 109 v POP3 s dng Port 110. Cc cu lnh trong hai giao thc ny khng ging nhau nhng chng cng thc hin chc nng c bn l kim tra tn ng nhp v password ca user v chuyn Mail ca ngi dng t Server ti h thng c Mail cc bt ca user. Trong khi tp lnh ca POP3 hon ton khc vi tp lnh ca POP2.

Mc d cc cu lnh ca POP3 v POP2 khc nhau nh chng cng thc hin mt chc nng

3/ Internet Message Access Protocol:

L giao thc h tr vic lu tr v truy xut hp th ca ngi dng, thng qua IMAP ngi dng c th s dng IMAP Client truy cp hp th t mng ni b hoc mng Internet trn mt hoc nhiu my khc nhau. Mt s c im chnh ca IMAP: - Tng thch y vi chun MIME. - Cho php truy cp v qun l message t mt hay nhiu my khc nhau. - H tr cc ch truy cp "online", "offline". - H tr truy xut mail ng thi cho nhiu my v chia s mailbox. - Client khng cn quan tm v nh dng file lu tr trn Server.

4/ MIME:
MIME (Multipurpose Internet Mail Extensions) cung cp cch thc kt hp nhiu loi d liu khc nhau vo trong mt thng ip duy nht c th c gi qua Internet dng Email hay Newgroup.
8

Thng tin c chuyn i theo cch ny trng ging nh nhng khi k t ngu nhin. Nhng thng ip s dng chun MIME c th cha hnh nh, m thanh v bt k nhng loi thng tin no khc c th lu tr c trn my tnh. Hu ht nhng chng trnh x l th in t s t ng gii m nhng thng bo ny v cho php bn lu tr d liu cha trong chng vo a cng. Nhiu chng trnh gii m MIME khc nhau c th c tm thy trn NET.

5/ X.400:
X.400 l giao thc c ITU-T v ISO nh ngha v c ng dng rng ri Chu u v Canada, X.400 cung cp tnh nng iu khin v phn phi E-mail, X.400 s dng nh dng nh phn do n khng cn m ha ni dung khi truyn d liu trn mng.

III/ Mt s phng thc chng spam mail :

1/ SPAM L G: Spam l th in t qung co hay l th c gi m khng c s yu cu t ngi nhn. Spam thng l nhng email v hi v c gi ti mt s lng ln ngi nhn khc nhau. Spam c c im l khng tn nhiu chi ph khi gi n mt s lng ngi nhn ln, v th cc spammer khng cn sng lc cc i tng nhn th c gi trng lp nhiu ln ti cng mt a ch ngi nhn.

2/ S DNG DNS BLACKLIST: Phng php s dng DNS black list s chn cc email n t cc a ch nm trong danh sch DNS blacklist. C hai loi danh sch DNS Blacklist thng c s dng, l: Danh sch cc min gi spam bit, danh sch cc min ny c lit k v cp nht ti a ch http://spamhaus.org/sbl. Danh sch cc my ch email cho php hoc b li dng thc hin vic chuyn tip spam c gi i t spammer. Danh sch ny c lit k v cp nht thng xuyn ti a ch http://www.ordb.org. C s d liu Open Relay Database ny c duy tr bi ORDB.org l mt t chc phi li nhun. Khi mt email c gi i, n s i qua mt s SMTP server trc khi chuyn ti a ch ngi nhn. a ch IP ca cc SMTP server m email chuyn qua c ghi trong phn header ca email. Cc chng trnh chng spam s kim tra tt c cc a ch IP c tm
9

thy trong phn header ca email sau so snh vi c s d liu DNS Blacklist bit. Nu a ch IP tm thy trong phn ny c trong c s d liu v cc DNS Blacklist, n s b coi l spam, cn nu khng, email s c coi l mt email hp l. Phng php ny c u im l cc email c th c kim tra trc khi ti xung, do tit kim c bng thng ng truyn. Nhc im ca phng php ny l khng pht hin ra c nhng email gi mo a ch ngi gi.

3/ S DNG SURBL LIST: Phng php s dng SURBL pht hin spam da vo ni dung ca email. Chng trnh chng spam s phn tch ni dung ca email xem bn trong n c cha cc lin kt c lit k trong Spam URI Realtime Blocklists (SURBL) hay khng. SURBL cha danh sch cc min v a ch ca cc spammer bit. C s d liu ny c cung cp v cp nht thng xuyn ti a ch www.surbl.org. C nhiu danh sch SURBL khc nhau nh sc.surbl.org, ws.surbl.org, ob.surbl.org, ab.surbl.org..., cc danh sch ny c cp nht t nhiu ngun. Thng thng, ngi qun tr thng kt hp cc SURBL list bng cch tham chiu ti a ch multi.surbl.org. Nu mt email sau khi kim tra ni dung c cha cc lin kt c ch ra trong SURBL list th n s c nh du l spam email, cn khng n s c cho l mt email thng thng. Phng php ny c u im pht hin c cc email gi mo a ch ngi gi nh la cc b lc. Nhc im ca n l email phi c ti xung trc khi tin hnh kim tra, do s chim bng thng ng truyn v ti nguyn ca my tnh phn tch cc ni dung email. 4/ KIM TRA NGI NHN: Tn cng spam kiu t in s dng cc a ch email v tn min bit to ra cc a ch email hp l khc. Bng k thut ny spammer c th gi spam ti cc a ch email c sinh ra mt cch ngu nhin. Mt s a ch email trong s c thc, tuy nhin mt lng ln trong l a ch khng tn ti v chng gy ra hin tng lt cc my ch mail. Phng php kim tra ngi nhn s ngn chn kiu tn cng ny bng cch chn li cc email gi ti cc a ch khng tn ti trn Active Directory hoc trn my ch mail server trong cng ty. Tnh nng ny s s dng Active Directory hoc LDAP server xc minh cc
10

a ch ngi nhn c tn ti hay khng. Nu s a ch ngi nhn khng tn ti vt qu mt ngng no (do ngi qun tr thit lp) th email gi ti s b coi l spam v chn li. 5/ KIM TRA A CH: Bng cch kim tra a ch ngi gi v ngi nhn, phn ln spam s c pht hin v chn li. Thc hin kim tra a ch ngi gi trc khi email c ti xung s tit kim c bng thng ng truyn cho ton h thng. K thut Sender Policy Framework (SPF, www.openspf.org) c s dng kim tra a ch ngi gi email. K thut SPF cho php ch s hu ca mt tn min Internet s dng cc bn ghi DNS c bit (gi l bn ghi SPF) ch r cc my c dng gi email t min ca h. Khi mt email c gi ti, b lc SPF s phn tch cc thng tin trong trng From hoc Sender kim tra a ch ngi gi. Sau SPF s i chiu a ch vi cc thng tin c cng b trong bn ghi SPF ca min xem my gi email c c php gi email hay khng. Nu email n t mt server khng c trong bn ghi SPF m min cng b th email b coi l gi mo.

6/ CHN IP: Phng php ny s chn cc email c gi n t cc a ch IP bit trc. Khi mt email n, b lc s phn tch a ch my gi v so snh vi danh sch a ch b chn. Nu email n t mt my c a ch trong danh sch ny th n s b coi l spam, ngc li n s c coi l email hp l. 7/ S DNG DANH SCH BLACK/WHITE LIST: Vic s dng cc danh sch black list, white list gip cho vic lc spam hiu qu hn. Black list l c s d liu cc a ch email v cc min m bn khng bao gi mun nhn cc email t . Cc email gi ti t cc a ch ny s b nh du l spam. White list l c s d liu cc a ch email v cc min m bn mong mun nhn email t . Nu cc email c gi n t nhng a ch nm trong danh sch ny th chng lun c cho qua. Thng thng cc b lc c tnh nng t hc, khi mt email b nh du l spam th a ch ngi gi s c t ng a vo danh sch black list. Ngc li, khi mt email c gi i t trong cng ty th a ch ngi nhn s c t ng a vo danh sch white list.

11

8/ KIM TRA HEADER: Phng php ny s phn tch cc trng trong phn header ca email nh gi email l email thng thng hay l spam. Spam thng c mt s c im nh: trng trng From: hoc trng To: . Trng From: cha a ch email khng tun theo cc chun RFC. Phn tiu ca email c th cha a ch email ngi nhn c nhn ha email . Lu khi s dng tnh nng ny vi cc a ch email dng chung c dng nh sales@company.com. V d khi mt khch hng phn hi bng cch s dng tnh nng autoreply vi tiu your email to sales c th b nh du l spam Gi ti mt s lng rt ln ngi nhn khc nhau. Ch cha nhng file nh m khng cha cc t nh la cc b lc. S dng ngn ng khc vi ngn ng m ngi nhn ang s dng. Da vo nhng c im ny ca spam, cc b lc c th lc chn.

IV/ Xy dng h thng mail an ton vi Mdaemon :

1/ Gii thiu Mdaemon:
L phn mn/cng c qun l th in t chy trn cc h iu hnh ca Microsoft c th s dng t su n hng nghn account. n gin v d cu hnh, ng thi l mt phn mm c gi thnh rt hp l nhng li c rt nhiu c tnh cho php d qun l hn cc h thng th in t khc trn th trng.

2/ V sao chn Mdaemon xy dng h thng Mail:

MDaemon l mt phn mm c giao din thn thin. Chy d dng trn cc h iu hnh ca Microsoft. C th qun l hng trm domains v hng nghn accounts ph thuc vo cu

hnh my. Ti thiu l: Pentium III 500MHz Trnh IE 4.0 RAM 512 MB

12

Microsoft Windows 9x/ME/XP/NT/2000/2003/Server2008 Kt ni TCP/IP vi mng Internet hoc Intranet

-

C nhiu tnh nng trong vic qun tr, bo m an ton h thng Mail nh:

chng Virus, chng Spam, cho php user qun l hp th thng qua Web Browser,

Ht

Cui cng, nhm chng em chn thnh cm n s hng dn nhit tnh ca thy V Thnh Long cng nh s gip ca cc bn trong thi gian lm bi bo co.

13