Decuong Web Mail v2

B mn mng my tnh v truyn thng
TRNG I HC S PHM K THUT HNG YN KHOA CNG NGH THNG TIN
CNG MN HC
THIT LP XY DNG V QUN TR H THNG MAIL SERVER V WEBSERVER
HNG YN, THNG 2-1011
CHNG 1: GII THIU V INTERNET
1.1. Tng quan v Internet v lch s pht trin ca Internet

1.1.1. Khi nim v Internet
Internet l mt tp hp ca cc my tnh c lin kt ni li vi nhau thng qua h thng dy cp mng v ng in thoi trn ton th gii vi mc ch trao i, chia s d liu v thng tin. Bt c ngui no trn h thng cng c th tip cn v i vo xem thng tin t bt c mt my tnh no trn h thng ny hay h thng khc. Trc y mng Internet c s dng ch yu cc t chc chnh ph v trong cc trng hc. Ngy nay mng Internet c s dng bi hng t ngi bao gm c c nhn cc doanh nghip ln, nh, cc trng hc v tt nhin l nh nc v cc t chc chnh ph. Phn ch yu nht ca mng Internet l World Wide Web. Mng Internet l ca chung iu c ngha l khng ai thc s s hu n vi t cch c nhn. Mi phn nh ca mng c qun l bi cc t chc khc nhau nhng khng ai khng mt thc th no cng nh khng mt trung tm my tnh no nm quyn iu khin mng. Mi phn ca mng c lin kt vi nhau theo mt cch thc nhm to nn mt mng ton cu. Internet l mt mng ton cu bao gm nhiu mng LAN (Local Area Network), MAN (Metropolitan Area Network) v WAN (Wide Area Network) trn th gii kt ni vi nhau. Mi mng thnh vin ny c kt ni vo Internet thng qua mt router.
Hnh 1.1: Tng quan v Internet
1.1.2. Lch s pht trin ca Internet

Vo cui nm 1960 B Quc phng M tin hnh xy dng mt mng my tnh din rng trn ton nc M. Mng my tnh ny c tn gi l ARPANET (Advanced Research Project Agency Network), mc tiu xy dng ca mng my tnh ny l cho php cc t chc chnh ph M chia s ti nguyn nh my in, my ch, c s d liu trn mng. Vo u nm 1980 giao thc TCP/IP c pht trin v nhanh chng tr thnh giao thc mng chun c dng trn mng ARPANET. H iu hnh c dng trn mng lc ny l BSD UNIX cng c tch hp s dng giao thc TCP/IP. H iu hnh ny nhanh chng tr thnh mt cng c hu hiu pht trin mng my tnh. Vi cc cng ngh mi ny s lng mng my tnh pht trin nhanh chng. Mng ARPANET ban u tr thnh mng ng trc (backbone) cho mng my tnh chy trn giao thc TCP/IP gm hang ngn my thuc cc mng cc b khc nhau. Mng my tnh ny chnh l mng Internet. Tuy nhin vo nm 1988, DARPA quyt nh tin hnh cc th nghim khc, B Quc phng M bt u hy b mng ARPANET v thay vo bng mng my tnh NSFNET. Pht trin t mng ARPANET, ngy nay mng Internet gm hng trm ngn my tnh c ni vi nhau trn ton th gii. Mng ng trc hin ti c th ti c lu lng ln gp hng ngn ln so vi mng ARPANET trc .
1.2 T chc ca Internet

Internet l mt lin mng, tc l mng ca cc mng con, kt ni cc mng con vi nhau, c hai vn cn gii quyt. V mt vt l, cc mng con ch c th kt ni vi nhau khi c my tnh c th kt ni vi cc mng ny. Vic kt ni n thun v vt l cha th lm cho cc mng con c th trao i thng tin vi nhau. Vn th hai l my tnh kt ni c v mt vt l vi cc mng con phi hiu c c hai giao thc truyn tin c s dng trn cc mng con ny v cc gi thng tin ca cc mng con s c gi qua nhau thng qua . Thit b ny c gi l Internet gateway hay router.
Vi kch thc ln nh mng Internet, vic cc routers lm sao c th quyt nh v vic chuyn cc gi thng tin cho cc my nm trong cc mng s tr nn phc tp hn. cc routers c th thc hin c cng vic chuyn mt s ln cc gi thng tin thuc cc mng khc nhau ngi ta ra quy tc l: Cc routers chuyn cc gi thng tin da trn a ch mng ca ni n, ch khng phi da trn a ch mng ca my nhn. Nh vy da trn a ch mng nn tng s thng tin m Router phi lu tr v s kin trc mng s tun theo s mng trn Internet ch khng phi l s my trn Internet. Trn Internet tt c cc mng u c quyn bnh ng cho d chng c t chc hay
3
s lng my rt chnh lch nhau. Giao thc TCP/IP ca Internet hot ng tun theo quan im sau: Tt cc cc mng con trong Internet nh l Ethernet, mt mng din rng nh NSFNET back bone hay mt lin kt im-im gia hai my duy nht u c coi nh l mt mng. iu ny xut pht t quan im u tin khi thit k giao thc TCP/IP l c th lin kt gia cc mng c kin trc hon ton khc nhau, khi nim "mng" i vi TCP/IP b n i phn kin trc vt l ca mng. y chnh l im gip cho giao thc TCP/IP t ra rt mnh. Nh vy, ngi dng trong Internet hnh dung Internet l mt mng thng nht v bt k. Mng Internet di con mt ngi s dng. Cc my c ni vi nhau thng qua mt mng duy nht.
H n h 1 . 2: M n g In t e r n e t d i m t n g i s d n g
Hnh 1.3 M hnh h thng mng Internet chi tit 1.2.1 Vn qun l mng Internet Thc cht Internet khng thuc quyn qun l ca bt k ai. N khng c gim c, khng c ban qun tr. Mi thnh vin u c th tham gia hoc khng tham gia vo Internet, l quyn ca mi thnh vin. Mi mng thnh phn s c mt gim c hay ch tch, mt c quan chnh ph hoc mt hng iu hnh, nhng khng c mt t chc no chu trch nhim v ton b Internet. T chc Internet Internet society - gi tt l ISOC l mt t chc nguyn c trch nhim hon ton v Internet v y l tr s chnh ca Internet, t chc ny c mc ch pht trin kh nng trao i thng tin da vo cng ngh Internet. tng c bn ca t chc ny l khuyn khch s trao i thng tin ton cu thng qua Internet. T chc Internet l mt y ban vi nhng thnh vin t nguyn chnh nhng thnh vin ny l ngi quyt nh hng tin ln pha trc ca Internet v cng chnh h l ngi qun l k thut v quy nh cc chc nng thch hp ca Internet. T chc ISOC bu ra Internet Architecture Board IAB Internet (The internet architecture board (y ban
5
Kin trc mng). y ban ny c trch nhim a ra cc hng dn v k thut cng nh phng hng pht trin Internet. Nhim v ca IAB l ra cc nguyn tc, quy nh tiu chun ho v phn chia cc ngun d liu nh l: nhng a ch ca nhng trang Web hoc v tr ca ngun d liu. Internet lm vic rt n gin bi v nhng my vi tnh trn th gii c th tr chuyn qua li trong mt s ng li chun v IAB c nhim v qun l cc ng li tiu chun ny cng nh IAB s ra quyt nh khi thy tiu chun l cp thit v quyt nh ban tiu chun nn lm g 1.2.2 Ti sao li cn Internet v Internet c th lm g gip cho chng ta Mt nguyn nhn quan trng l nhng ngi s dng Internet mc trung bnh s tm ra mt con s thng tin khng l ngoi s tng tng thng qua vic tm kim, chia s d liu, thng tin trn Internet. Khc xa vi vic truyn thng tin truyn thng bng th tay, bng in thoi.., Internet lin kt nhng ngi ang sng cch xa hng trm ngn kilomet li vi nhau gip hc hi kinh nghim, tng thm ngun kin thc y l mt nguyn l c bn v nn tng ca Internet. Quan nim thi i Internet by gi l khng c gii hn v khong cch a l cng nh l thi gian. Internet c th lm g gip cho chng ta Internet gip cho chng ta nhiu vic nh: L mt bc s, bn c th tm mt h thng a dch v: nh l bo ch y khoa, tin tc v cp nht trn cng ngh k thut y khoa mi nht. Nhng tho lun nghin cu y khoa, nhng phng n v thuc, v s tr liu v nhng lnh vc khc. V d : Bn ang Vit Nam, bn c th xem mt qu trnh din ra mt ca phu thut phc tp ti M, hoc l gia nh bn ang nc ngoi th bn cng c th cng gia nh ca mnh tham d mt cuc hi ngh y khoa. Khng ch c th, thm ch bn c th tho lun, ngh c cung cp nhng ti liu v y khoa c lin quan v cc cng c h tr cho cng vic ca mt bc s. Bn c th tm nhng thng tin ht v nhng liu thuc hin i nht, cng nh s cu thnh ca chng, v mt cng c, hiu qu hay nhng chi tit khc. Hay l thng tin v th nghim lm sng v s pht trin mang tm vc quc t trong khu vc c bit ca bn. Nhng chuyn gia trong lnh vc khc nhau ca thuc thng l nhng thnh vin trong cng ng y khoa. H san s kin thc v kinh nghim ca h vi nhau v vi nhng ngi khc, bi vy vic cng gip ngi khc hc v nghin cu cng nhau trn phm vi ton th gii, khng cn gii hn trong tng quc gia ring l. Th in t hay cn gi l Email c th gip chng ta gi i nhng li nhn . Ngi nhn d bt k u trn th gii ny u c th nhn th trong vng 2 giy ng h, vy nn email l mt cch truyn t thng tin mt cch nhanh chng, gn nh v d dng. Bn cng c th ni chuyn vi mt ngi khc trn mng bng cch s dng phn mm truyn tin hoc chng trnh c lt trn mng tm thng tin tng th. Mt sinh vin ngnh y khoa c th tm nhng li ghi ch v cng c tr l hc tp trong lp hoc trong sch v. Mt ngi ging vin cng c th s dng n lm tng thm
6
ngun kin thc cho mnh v hc hi nhng kinh nghim thng qua nhng trang Web.
Chng 2: Tng quan v mt h thng Web
2.1 Gii thiu

Mt h thng Web l mt h thng cung cp thng tin trn mng Internet thng qua cc thnh phn My ch, trnh duyt v ni dung thng tin. Trong chng ny s gii thiu mt cch c bn nguyn l hot ng ca mt h thng Web cng nh cc thng tin lin quan ti cc cch thc xc nh v tr ngun thng tin, cch thc trao i d liu gia my ch vi trnh duyt v cch thc th hin thng tin.
2.2 M hnh h thng Web ni chung
Mng dch v Web l mng cc my tnh lin quan n dch v Web bao gm cc my ch dch v, cc my tnh v thit b phc v cho vic cung cp dch v Web. H thng bao gm: - ng kt ni vi mng cung cp dch v InternetCc my ch cung cp dch v Web: cung cp cc dch
8
v web hosting, cha cc phn mm Application Server m bo vic pht trin cc dch v trn web, kt ni n cc c s d liu trn cc my tnh khc, mng khc - Cc my ch c s d liu, my ch chng thc, my ch tm kim ... - H thng tng la (c phn cng v phn mm) m bo an ton cho h thng my ch vi mi trng Internet. - H thng my trm iu hnh, cp nht thng tin cho my ch Web...
2.3. Nguyn tc hot ng
Internet
http://home.v nn.vn
Brows
http://home.vnn.vn
Server answer Server answer
Server answer Server answer
Clien HTM HTM

Web Server Web Server
Server
Greeting!
Well come to Our site VNN Web Site on the Net We hope that you will find every thing you are looking for
CGI API . .
<html> <body> <H1> Greeting! </H1> <H1> Greeting! </H1> <p><i>Well come to our site</i></p> <img src=vnnlogo.gif> <p>We hop that you will find every thing you are looking for </p> </body> </html>
Database
Khi my client kt ni vo Internet (thng qua h thng mng LAN hay cc ng dial up..), ngi s dng dng trnh duyt web (web browser) g a ch tn min cn truy nhp (v d: http://home.vnn.vn) gi yu cu n my ch Web. Web Server xem xt v thc hin ht nhng yu cu t pha Web browser gi n. Kt qu l mt trang "thun HTML" c a ra Browser. Ngi s dng s hon ton trong sut vi nhng g ng sau ca mt Web server nh CGI Script, cc ng dng c s d liu. Trng hp l web tnh th web server s ly thng tin lu sn trn my ch dng th mc, file gi li theo yu cu ca client. Trng hp web ng (dng cc ngn ng lp trnh web nh ASP, PHP, JSP, CGI ... kt ni v khai thc c s d liu. Mt v d: Khi c k hoch i cng tc ti H ni, A bit c th tm c cc thng tin lin quan ti thi tit H ni ti a ch Web "http://hanoi.vnn.vn" a ch ny chnh l mt URI (Uniform Resource Identifier - world wide web address) . Khi A nhp URI trn vo trnh duyt th: 1. Trnh duyt s thc hin gi yu cu ly thng tin ti a ch xc nh trong URL thng qua giao thc truyn d liu c tn l http. 2. My ch ni cha thng tin s xc nh nhng thng tin cn thit theo yu cu da trn URI ca ngi s dng gi ti. Truyn thng tin lin qua ti yu cu ti ngi s dng thng qua giao thc truyn thng http. 3. Trnh duyt sau khi nhn c kt qu tr li ca my ch s tin hnh trnh by d liu kt qu nhn c theo khun dng nht nh. Bn thn trong kt qu nhn c cng bao gm cc lin kt ti thng tin v tr khc trn Web v cc v tr ny cng c xc nh bi cc URI. Trong v d trn gii thiu cho chng ta ba cu trc ca Web gm: Xc nh v tr thng tin, Trao i v cch th hin thng tin: 1. Xc nh v tr thng tin: Mi resource trong Web s c xc nh bi Uniform Resource Identifier (URI). Trong v d trn, resource dng ly tng tin v thi tit H ni c xc nh bi URI: "http://hanoi.vnn.vn". 2. Trao i thng tin: Cc tc nhn ca Web (trnh duyt browser, web server, ) thc hin trao i thng tin thng qua cc message, cc message ny c hnh thnh khi c yu cu ca ngi s dng hoc khi thc hin cc tin trnh x l d liu. Cc giao thc (Protocols) s nh ngha cch thc trao i d liu gia cc tc nhn trong Web, trong v d ny l giao thc HTTP. Th hin thng tin: Cc message c hnh thnh khi trao i thng tin gia cc tc nhn trong web cha cc nh dng d liu. Ty thuc vo tng
10
yu cu c th m cc inh dng th hin d liu s khc nhau. Trong trng hp khi nhn kt qu tr li t cc web server, cc nh dng c th l: HTML, XML, d liu nh, Da trn cc nh dng c nh ngha ny, trnh duyt s trnh by li sao cho d liu c th gip ngi s dng khai thc thng tin mt cch d dng.
11
Bi 3. Cc phng php cp nht thng tin ln web
FTP l g? FTP (File Transfer Protocol) l mt giao thc chun c nh ngha trn Internet. N l giao thc client/server, y client l mt h thng (thng l my tnh ca bn) gi cc yu cu n server(my ch cung cp dch v) hoc mt h thng khc (FTP site) v nhn c tr li t site .
3.1 FTP di dng dng lnh

T du nhc DOS nhp vo : ftp <ftp server/tn host> Trong : FTP server/tn host : l my ch hoc host cung cp dch v ftp m bn ng k (m account) ti . FTP bt u kt ni vi my ny, nu thnh cng ngi s dng c yu cu nhp vo tn login v mt khu. Khi mn hnh nh sau : login : password : Sau th tc kt ni, bn c th thc hin 1 s lnh sau : a) Nhng lnh c bn quit : ng kt ni n host t xa, ngng chng trnh ftp. ? (hoc help) : hin th danh sch tt c cc lnh ftp. ?command (hoc help command) : hin th bng tm tt trc tip lnh c m t. b) Lnh v kt ni open [host] : thit lp kt ni n my tnh xc nh (vi [host] l tn my). close : ng s kt ni n host t xa, tr li ftp. use [name(password)] : thit lp tn User. c) Lnh v th mc cd [directory] : chuyn n th mc c xc nh trn host xa. cdup : chuyn v th mc gc trn my xa. dir [directory] [tn file cc b] : lit k th mc xc nh trn my xa, ni dung c a vo tp tin trn my cc b. lcd [directory] : chuyn n th mc cc b. ls [directory] : lit k danh sch file trong th mc c th. pwd : xem th mc hin hnh ca my xa. d) Lnh truyn nhn file get <tn file ngun> <tn file ch> : ly tp tin t my xa v my coc b. put <tn file ngun> <tn file ch> : chuyn tp tin t my my coc b ti my xa vi : <tn file ngun> : l ng dn tn tp tin trn host xa bn mun ly v
12
<tn file ch> : l ng dn v tn file ti my cc b ly hoc truyn i mt nhm tp tin dng lnh : mput v mget vi danh sch tn c th dng cc k t i din nh *, ? mput <danh sch file ngun> mget <danh sch file ngun>
3.2 FTP di dng truyn file thng qua cc chng trnh

3.2.1 Gii thiu mt s chng trnh FTP Client WS_FTP Pro c th kt ni ti bt k h thng no vi iu kin h thng c a ch IP chnh xc v ci ng dng FTP server. N cng cho php truyn cc file gia cc h iu hnh khc nhau bao gm c Windows, OS/2 v UNIX. 3.2.2 To kt ni bng WS_FTP Pro client - Trc khi s dng WS_FTP Pro truyn file, bn phi a vo cc thng tin v site m bn mun kt ni ti. Qu trnh ny c gi l qu trnh to Site profile. - Site profile lu tr cc thng tin ca FTP site nh a ch IP, Tn truy nhp (Username) v Mt khu (Password) m bn s dng kt ni. - to Site profile bn lm theo cc bc sau: Nu hp thoi Connect to Remote Host cha m ti ca s WS_FTP Pro, hy nhn chut vo Connect m ra. 1. Ti hp thoi Connect to Remote Host, nhn chut vo Create Site. Hp thoi to Site Profile xut hin
2. Vo tn m bn mun gi cho site mi ca bn trong Name 3. Trong Create In, nhn chut vo nt Browse v chn th mc m bn mun lu site ca bn vo . Nu bn mun lu n vo th mc gc, hy chn th mc Sites. 4. Nhn Next > 5. Trong Host Name or IP Address, vo a ch ca FTP site hoc tn ca FTP site. VD:203.162.1.44 hoc ftp.Ipswitch.com 6. Nhn Next >
13
7. Trong User ID, vo tn truy nhp (username) (y l tn m c ng k khi to account ftp ca bn) 8. Trong Password, vo mt khu (password) ca account ftp trn (Mt khu ny cng c ng k khi to account ftp ca bn) 9. Chn Save Password 5. Nhn Finish Sau khi bn kt thc qu trnh trn bn s nhn thy site ca bn trong th mc(folder) m bn chn. Qu trnh to Site profile hon tt, by gi bn c th kt ni ti site : 1. Chn site profile cn kt ni 2. Nhn chut vo nt Connect - Hp thoi Connect to Remote Host ng li v chng trnh WS_FTP Pro s to mt kt ni FTP. Nu kt ni thnh cng, ca s bn tay phi s hin th tt c cc th mc v file uc lu tr ti site m bn kt ni ti. Nu khng th ca s bn tay phi s trng, bn hy xem li cc thng s ca site profile. 3.2.3 Truyn file - Sau khi kt ni ti FTP site, bn sn sng truyn cc file gia my tnh ca bn v FTP c chia lm 2 loi: site m bn ang kt ni. Qu trnh truyn file ny Upload: truyn cc file t my tnh ca bn ln FTP site Download: truyn cc file t FTP site v my ca bn. Gia hai ca s ln l 2 mi tn iu khin truyn file Chn file ti ca s bn phi (trn FTP site) v nhn chut vo nt Chn file ti ca s bn tri (My ca bn) v nhn chut vo nt upload file ln th mc hin hnh ca FTP site (hin th ti ca s bn phi)
Downloa
14
BI 4. CC L HNG BO MT WEB THNG GP
4.1 L HNG BO MT CA NG DNG WEB

Mc d khng th ph nhn nhng ci tin nng cao ng k hin nay, nhng vn v bo mt trong ng dng Web vn khng ngng tng ln. Nguyn nhn c th xut pht t cc on m khng ph hp, my ch dch v Web cu hnh b li. Nhiu im yu nghim trng hay cc l hng cho php hacker xm nhp thng v truy cp vo c s d liu tch ly d liu nhy cm. Nhiu c s d liu cha thng tin gi tr (nh chi tit c nhn, thng tin ti chnh) khin chng tr thnh ch nhm thng xuyn ca hu ht hacker. Mc d hot ng tn cng ph hoi website doanh nghip vn din ra thng xuyn, nhng by gi tin tc thch tng cng kh nng truy cp d liu nhy cm nm trn trnh ch cha database hn v li nhun khng l t cc v mua bn d liu em li. Trong khung hot ng m t trn, bn c th thy tht d dng cho mt hacker truy cp nhanh chng thng tin nm trn c s d liu ch vi mt cht sng to. Nu may mn hn chng c th gp l hng xut pht t s cu th hay li ngi dng trn cc ng dng Web. Nh ni, website ph thuc vo c s d liu phn phi thng tin c yu cu cho ngi dng. Nu ng dng Web khng an ton (nh c l hng, gp phi mt kiu k thut hacking no ), ton b c s d liu cha thng tin nhy cm s gp nguy him nghim trng. Mt s hacker c th chn m c hi vo ng dng Web c l hng la o ngi dng v dn h ti website phishing. K thut ny c gi l Cross-site Scripting, c th c dng ngay c khi bn thn Web Server v ni cha c s d liu khng c l hng no. Mt cuc nghin cu gn y ch ra rng 75% cc cuc tn cng mng c thc hin mc ng dng Web.
15
Hnh 0.1: L hng bo mt Web Website v cc ng dng Web lin quan lun phi sn sng 24/7 cung cp dch v theo yu cu khch hng, yu cu t pha nhn vin, nh cung cp v nhiu ngi lin quan khc. Tng la, SSL khng th bo v ng dng Web trc mi hot ng hacking, n gin v truy cp vo website phi ch public bt k ai cng c th gh thm website c. Tt c h thng c s d liu hin i (nh Microsoft SQL Server, Oracle, MySQL) u c th truy cp qua mt s cng c th (nh cng 80, 443). Nu mun, mt ngi no c th kt ni trc tip ti c s d liu mt cch hiu qu khi vt qua c ch bo mt ca h iu hnh. Cc cng ny m nhm cho php lin lc vi hot ng giao thng mng hp php, v do cng hnh thnh nn nhng l hng ln nguy him. Cc ng dng Web thng truy cp d liu cui nh c s d liu khch hng, iu khin d liu c gi tr v do rt kh c th tuyt i an ton. Lc ny truy cp d liu thng khng km script cho php
16
ng gi v truyn ti d liu. Nu mt hacker nhn ra im yu trong mt script, anh ta c th d dng m li lu lng sang khu vc khc v chia l bt hp php chi tit c nhn ngi dng, d i khi khng h ch tm lm iu . Hu ht ng dng Web u l t to, do t c c cc kim tra trnh hn so vi phn mm cng loi. Do cc ng dng ty bin thng d b tn cng hn. C th ni ng dng Web l mt cng vo (gateway) ca c s d liu, nht l cc ng dng ty bin. Chng khng c pht trin vi mc bo mt tt nht v khng phi qua cc kim tra bo mt thng thng. Ni chung, bn cn tr li cu hi: Phn no trn website chng ta ngh l an ton nhng li m ca cho cc cuc tn cng? v D liu no chng ta em vo mt ng dng khin n thc hin mt s iu khng nn lm?.
4.2 CC L HNG BO MT WEB THNG GP

4.2.1 Nhng l hng khng nghim trng L nhng li ca ng dng Web v my ch dch v Web. Tuy nhin nhng li ny thng khng th khai thc hoc nu khai thc c th cng khng nh hng nhiu n cc ng dng Website. Tuy nhin n vn c gi v c lit k vo trong nhng l hng bo mt Web bi v t hay nhiu n vn c th b li dng hoc nh hng n ng dng v ngi dng Web .
a, Mt khu a vo t ng hon thnh

M t: Khi mt ti khon mi(gm tn username v mt khu password) c to ra t mt form v form c trnh(gi d liu l tn v mt khu ln server) khi trnh duyt s hi nu mt khu c lu. Sau khi form c hin th, tn v mt khu y s c t ng c a vo ng nhp. Mt k tn cng vi vic truy nhp trc tip vo my tnh c th ly c mt khu khng m ha b nh m ca trang Web. nh hng: Thng tin nhy cm(tn v mt khu)c th b l. Cch khc phc: Mt khu a vo t ng hon thnh c th tt trong cc ng dng nhy cm. tt ch t ng hon thnh c th s dng m ging nh: <INPUT TYPE="password" AUTOCOMPLETE="off">
b, ng lin kt b hng - Broken Link

M t: Mt ng lin kt hng s a ta ti mt mt s ti liu, hnh nh hoc trang Web m trn thc t n hin ra kt qu l trang web khng tm thy the
17
page cannot be found. i khi trang ny c lin kt vi mt trang khc nhng khng th tip cn c. nh hng: Trong trng hp ny, khng c k tn cng no c th li dng c li ny nhng n lm cho nh hng ti vn iu hng trang Web. Cc ng link hng i khi s lm cho ngi dng tng trang Web khng tn ti hoc b li khng truy nhp c Cch khc phc: Xa nhng ng lin kt hng hoc lm cho cc ti liu, hnh nh, trang Web m lin kt ch n cth truy nhp c.
c, Windows Terminal Service chy trn Webserver

M t: Mt dch v Windows Terminal Service ang chy trn host. Terminal Services l mt trong nhng thnh phn ca Microsoft Windows(c phin bn my ch v my khch) m cho php ngi dng truy nhp vo ng dng v d liu trn mt my tnh t xa. L hng ny c th b tn cng bi kiu tn cng ngi n ng gia(MITM). nh hng: Thng tin nhy cm c th s b l Cch khc phc: Hn ch truy nhp ti ngi dng v host.
d, a ch th in t(email) c tm thy trn trang Web

M t: Mt hay nhiu a ch email c tm thy trn trang Web. Spam-boots l mt chng trnh r sot cc a ch email trn mt s website m chng c ch nh hoc i qua. Chng trnh Spamboot tm kim cc chui k t ging nh tnbn@tn_min_ca_bn.com v chng s ghi li tn cc a ch email m chng tm thy c. nh hng: C th l nn nhn ca cc chng trnh spam. Hoc i khi c th l mc tiu ca phishing.
Cch khc phc: S dng javascript che giu a ch mail. S dng form lin h thay cho ghi trc tip thng tin a ch email.
4.2.2 Nhng l hng mc bnh thng Cc l hng mc ny cng c nh hng trc tip n my ch Web hoc my ch ng dng Web. Tuy nhin kh nng b khai thc v mc nguy him trc tip ti Website l cha cao.
18
a, FTP ng nhp di quyn nc danh

M t: My ch tp(FPT Server ) cho php ngi nc danh ng nhp. Cho php ngi dng khng cn ti khon c th truy nhp vo nhng th mc quan trng ca h thng(nh cc th mc gc Web). nh hng: C th b mt nhng thng tin nhy cm. Cch khc phc: Nu khng cn thit phi s dng dch v ny hy tt n i hoc nu cn dng th nn tt ti khon nc danh. Gn quyn truy nhp cho mi th mc mt cch chi tit.
b, Dch v telnet c bt (Telnet service running)

M t: Dch v ng nhp t xa ang chy trn host. Telnet cho php ngi dng ng nhp thng qua mng, nh l trc tip ti my tnh. Tt c thng tin, trong bao gm c tn ng nhp, mt khu u truyn i trn mng di dng vn bn thng thng khng c m ha nh hng: C th s b mt nhng thng tin nhy cm. Cch khc phc: Nu bn khng s dng dch v ny tt nht nn tt n i. Nu cn phi s dng mt dch v iu khin t xa nn thay th telnet bng SSH.
c, Cc thng bo li ng dng(Application Error Message)

M t: Trang Web cha cc thng ip li/cnh bo m c th l ra cc thng tin nhy cm nh: Cng ngh s dng trong ng dng Web. Pht hin c tn cng c gng thnh cng.
Nhn c cc gi thc hin bc tn cng tip theo M da vo thng bo li ny cc k tn cng c th bit c qu trnh x l d liu v cc ngoi l ca h thng. nh hng: L nhng thng tin nhy cm c th rt hu ch cho k tn cng. Cch khc phc: Kim tra li m ngun hn ch cc thng bo li ca h thng, hoc chuyn thnh cc thng bo khc nh la k tn cng.
d, Nhng th mc c th nhy cm b l - Possible sensitive directories

M t: Mt th mc c th nhy cm b tm thy. Nhng th mc ny khng c ng lin kt trc tip t trang Web. Nhng th mc ny c th l: th mc sao
19
lu d liu ca trang Web, c s d liu rc, trang qun tr, cc th mc tm. Mi th mc ny c th gip cho k tn cng c th tm hiu thm v mc tiu tn cng ca hn. nh hng: Cc th mc ny c th b l ra nhng thng tin m c th gip cho mt ngi dng xu chun b thc hin tn cng trang Web. Cch khc phc: Hn ch truy nhp ti cc th mc ny hoc di chuyn chng khi Website.
e, Cc tp nhy cm c th b l
M t: Mt tp c th nhy cm b tm thy. Nhng tp ny khng c ng lin kt t trang Web ti. Nhng tp ny ging nh nhng tp nhy cm nh: cc tp mt khu, tp cu hnh, cc tp ghi li(logs files), d liu tnh Mi tp ny u c th rt c ch cho k tn cng. nh hng: Cc tp ny c th b l ra nhng thng tin m c th gip cho mt ngi dng xu chun b thc hin tn cng trang Web. Cch khc phc: Hn ch truy nhp ti cc tp ny hoc di chuyn chng khi Website.
f, Chng nhn ngi dng c gi i di dng vn bn d hiu

M t: Chng nhn ngi dng(thng thng l tn ng nhp username v mt khu password) khng c m ha c truyn i trn mng. nh hng: Bn th 3 c th c c cc chng nhn ngi dng bng cch chn mt kt ni khng m ha HHTP. S dng kiu tn cng sniffing trn mng chn cc gi tin HTTP v sau d dng(do thng tin ngi dng khng c m ha) ly c nhng thng tin cn thit. Cch khc phc: S dng mt phng thc m ha(thng l SSL) m ha cc thng tin, chng nhn ngi dng trong khi gi n my ch.
g, Tm thy danh sch cc th mc

M t: My ch ng dng Web c cu hnh hin th danh sch tt c cc tp cha trong th mc. y khng phi l mt khuyn co tt v cc th mc c th cha nhng tp m thng thng chng khng b l thng qua cc ng lin kt trn trang Web. nh hng:Ngi dng c th xem danh sch tt c cc tp cha trong th mc cha nhng thng tin nhy cm.
20
Cch khc phc: Bn phi chc chn rng khng th mc khng cha nhng thng tin quan trng v thc s bn mun l nhng danh sch t cu hnh my ch dch v Web. Phng thc n gin nht tt danh sch cc th mc l to ra mt tp index. Tn ca tp index ph thuc vo cu hnh my ch dch v Web. trn Apache th c gi l index.html. Trn IIS th tn l defaul.asp, default.aspx, defaul.htm. Mc nh trn IIS danh sch cc th mc b tt b. trong Apache bn phi chnh sa li tp cu hnh ca
Apache(thng l tp httpd.conf) hay to ra mt tp .htaccess. trong tp cu hnh bn s nh ngha th mc. Ging nh: <Directory /directoryname/subdirectory> Options Indexes FollowSymLinks ... </Directory> tt lit k th mc cho th mc bn cn xa b la chn Indexes.
h, WebDAV(Web-based Distributed Authoring and Versioning) c cho php

M t: Web-based Distributed Authoring and Versioning (hay WebDAV) l thnh phn m rng ca IIS cho php ngi s dng c th qun l tp File (xa, chnh sa, ) trn my ch web. L hng ny xy ra trong qu trnh x l k t unicode %c0%af (Unicode / character). Cho php k tn cng c th vt qua c ch bo v lit k th mc, file; c file, to file,... nh hng: Nu WebDAV khng c cu hnh ng n c th cho php ngi dng t xa sa cha ni dung ca Website. (ngy 18-05-2009 Microsoft a ra mt cnh bo ni v mt li ca WebDAV v ngy 9-06-2009 a ra bn v MS09-020 trong IIS6 m cho php k tn cng t xa c th vt qua s hn ch truy nhp nng quyn v c php xem, to, v chnh sa ni dung, th mc Website ) Cch khc phc: Cp nht cc bn v li mi nht ca Microsoft cho IIS. Nu m khng s dng thnh phn m rng ny cch tt nht l tt
21
n i. 4.2.3 Nhng l hng mc nghim trng Nhng l hng c xp mc ny l nhng l hng c mc nghim trng cao, d b li dng khai thc bi k tn cng. Khi b khai thc s c tc ng trc tip ti my ch dch v Web, my ch ng dng Web hoc c s d liu ca trang Web do vy nh hng xu ti trang Web.
a, Tim cu lnh SQL (SQL Injection)

M t: Nhng nm v trc khi Hu ht cc ng dng web ng ngy nay, u c xy dng da trn mt c s d liu Database. Phn ln cc c s d liu c s dng hin nay l MSSQL , MYSQL, OCRACLE. Tuy nhin do chi ph s dng OCRACLE qu cao nn hu ht cc web thng s dng MSSQL v MYSQL. Trong , phn ln cc script pha server hot ng phn ln da v cc cu truy vn (query) ti database. SQL Injection chnh l mt cch tn cng ca hacker bng cch inject(tim) cc truy vn SQL vo cc u vo Input trc khi d liu c chuyn cho ng dng web x l. Bng cch tim trc tip cc truy vn vo trong u vo d liu hoc trn thanh a ch URL, hacker c th ng nhp (login) vo h thng m khng cn Username v Password hoc c th truy vn ly c ti khon admin, hay thao tc trc tip vi c s d liu ca trang Web. nh hng: Nu khai thc thnh cng li SQL Injection ca site mc li, k tn cng s chim c quyn admin ca trang Web, do , k tn cng hon ton c th thay i database, chnh sa ni dung, xa ton b database. Nh vy hacker l lm ch hon ton website. Cch khc phc: Kim tra d liu ca ngi dng a vo trc khi x l.Kim sot cht ch tt c cc d liu nhp nhn c t i tng Request (Request, Request.QueryString, Request.Form, Request.Cookies, and Request.ServerVariables). S dng cu trc lp trnh 3 lp tch bit hn lp x l d liu ring. Thay i "Startup and run SQL Server" dng mc low privilege user trong tab SQL Server Security. Xa b cc stored procedure m bn khng dng nh:
master..Xp_cmdshell, xp_startmail, xp_sendmail, sp_makewebtask Dng cng ngh Rewrite URL(Tuy nhin ch hn ch c vic chn trc tip d liu trn URL)
22
b, Kch bn lin trang XSS(Cross Site Scripting)

M t: L mt l hng m cho php k tn cng c th gi nhng on m c(thng c vit bng javascript) thng qua cc ng lin kt(thng l cc ng lin kt c chuyn i thnh mt dng HEX nh la ngi dng), hoc thng qua email, ti mt ngi dng khc. Bi v mt trnh duyt khng bit c on script c tin tng hay khng, n s thc thi cc script v khi thc thi cc script ny, k tn cng c th ly c cookie hay chim c phin lm vic hin thi ca ngi dng .
Hnh 0.2: Tn cng XSS nh hng: K tn cng c th tim JavaScript, VB Script, ActiveX, HTML, hay Flash vo trong mt l hng ng dng Web XSS la ngi dng ly nhng thng tin cn thit ca ngi dng. K tn cng c th n trm cookie, tip qun ti khon, v mo danh l ngi dng. Cch khc phc: Lc cc k t a vo t ngi dng(c gi tr ASCII va HEX).
23
i vi ngi dng phi cn thn ch trc khi bm vo cc
ng link.
c, u c cookie/session(Cookie/session Poisoning)
M t: Cookie l mt b nhc (reminder) nh m web site lu tr my tnh ca khch hng c th nh danh khch hng. Cookie c xem l nhng tin nhn n gin c my ch ang qun l mt website, ch ng gi n trnh duyt web ang dng lt trang web , nhm mc ch theo di cc hot ng ca ngi ang xem website. Tin nhn ny c nh dng mo u (header) HTTP ch l mt chui vn bn. Chui vn bn ny s c a vo trong b nh ca trnh duyt web. Trnh duyt web s ln lt lu gi cc thng tin cookie ln a cng, v th khi trnh duyt tt i v bt tr li th cc thng tin cookie vn c th c dng tip. Tin nhn ny c nh dng l mt chui vn bn n gin, n s c a vo th mc lu tr tm Temp ca trnh duyt web v trnh duyt web s t ng lu tr mi thng tin cookie vo a cng. Cc thng tin ny s phn nh thi quen ca ngi dng khi vo trang web , chng hn nh chuyn mc no thch xem nht v sau s t ng gi cc thng tin thu thp c v cho ch nhn ca trang web. Khi tt i trnh duyt th cookie vn cn lu tr trong my v vn s tip tc hot ng cc ln gh thm sau. Da vo cc thng tin m cookie gi v, ch nhn trang web c th bit c khch lt web ang quan tm v nhng vn g sau tung qung co ph hp bn sn phm. u c cookie/session cho php k tn cng chn ni dung cc on m c, chnh sa cc thng tin trong cookie ca ngi dng. Mt proxy c th c s dng vit li cc d liu ca phin(session), hin th d liu ca cookie v c th ghi nh danh(ID)ca mt ngi dng mi hay mt phin(session) khc vo trong cookie. nh hng: Khi cookie/session b u c cc thng tin ca ngi dng trong cookie s b xem, thay i. Cch khc phc: Khng lu tr di dng vn bn bnh thng hoc m ha mt khu yu trong cookie. IP. Lm chc nng ng xut c hiu lc(xa b mi cookie nu thng tin tng tc vi Website l quan trng).
24
Thc thi thi gian c hiu lc cho cookie. Cc chng thc s dng cookie phi c lin kt vi mt a ch
d, Th mc giao nhau (Directory Traversal)

M t: Directory Traversal cn c mt s tn gi khc na nh Path Traversal , dot-dot-slash, Directory Clumbing v Backtracking l l hng m cho php k tn cng truy cp n nhng file v th mc m c lu bn ngoi th mc webroot. Hnh thc tn cng ny khng cn s dng mt cng c no m ch n thun thao tc cc bin vi ../ (dot-dot-slash) truy cp n file, th mc, bao gm c source code, nhng file h thng, nhn bit kh nng khai thc li ny, cc k tn cng thng quan st kt qu c c t spider hoc crawler mang li (Spider v crawler gi l b tm kim. N c thit kt thu thp ti nguyn Internet (trang Web, hnh nh, video, ti liu Word, PDF hay PostScrips) , cho php my tm kim nh ch s. nh ch s cc ti nguyn Web, mi b tm kim (robot) s i theo cc lin kt m n tm thy ti mt trang trung tm. Sau , mi trang duyt s c ghi nh li v gn cho tn s nh li ch s da vo mc cp nht thng xuyn hay khng ca trang). nh hng: Da vo thng bo li t Website k tn cng bit c ng dn thc s trn WebServer, t c th kt hp vi ../ (dot-dot-slash) truy cp n nhng file quan trong ca Website nh database, file cu hnh, Lu rng Path Traversal khng ch xy ra i vi cc bin trong phng thc GET m cn c th xut hin trong cc phng thc POST hoc bin COOKIE. Cch khc phc: nh ngha v gn quyn cc vng truy nhp trn Website S dng b lc lc thng tin ngi dng. Cp nht cc bn v li cho my ch Web.
e, H qun tr c s d liu MySQL Enterprise Server v.5.0.52 cha nhiu l hng

M t: MySQL Enterprise Server b nh hng bi nhiu l hng bo mt. Do phin bn c v tim n nhiu li. nh hng: nh hng trc tip n h thng c s d liu k tn cng c th truy nhp c vo my ch. Cch khc phc: Ci cc bn v li nhng tt nht l nng cp ln phin bn mi nht.
f, S dng SSL2
M t: M ha lu lng dch v truy cp t xa s dng mt giao thc c l SSL2 vi nhiu im yu v li.
25
nh hng: Mt k tn cng c th khai thc li ny bng cch s dng kiu tn cng MITM hay gii m d liu gia my ch dch v v cc my khch. Cch khc phc: S dng phin bn SSL3 hoc TLS1 thay th cho SSL2.
g, Vng chuyn i DNS(DNS Zone Transfer)

M t: DNS Domain Name System l h thng qun l vic nh x gia a ch ca my tnh trn Internet vi tn ca chng. Trn Internet, mi my tnh u c cp mt a ch ring bit, thng c gi l IP address, tm dch l a ch IP (IP vit tt ca Internet Protocol, giao thc iu khin vic trao i thng tin lin lc gia hai my tnh trn Internet). a ch IP thng di v kh nh, ph hp vi my tnh, khng ph hp vi tr nh ca con ngi (thng ch c kh nng nh c ti a 7 s ti mt thi im), do ngi ta mi t cho mi my tnh mt ci tn d nh, chng hn nh www.vnexpress.net, www.yahoo.com, www.tuoitre.com.vn..., ri s dng h thng DNS ni trn nh x nhng tn ny vo cc a ch IP thc s ca chng. Zone Transfer (vng chuyn i) nm gia my ch DNS chnh v my ch DNS ph. Nhng my ch DNS chnh c phn quyn cho nhng min c th cha vng file DNS c th ghi v cp nht khi cn thit. My ch DNS ph nhn mt bn sao ch c ca nhng vng file ny t my ch DNS chnh. My ch DNS ph c s dng tng kh nng thc thi truy vn DNS trong mt t chc hay trn Internet. Tuy nhin, Zone Transfer khng gii hn my ch DNS ph. Bt c ai cng c th chy mt truy vn DNS cu hnh my ch DNS cho php Zone Transfer kt xut ton b vng file c s d liu. Ngi dng xu c th s dng thng tin ny thm d gin tn trong cng ty v danh sch tt c cc hosts trong min ca bn t ngi dng su c th tn cng dch v cu trc h tng ch cht. nh hng: Thng tin nhy cm c th b l Khc phc: Bn c th ngn chn iu ny bng cch cu hnh my ch DNS t chi Zone Transfer thc hin yu cu, hay cu hnh my ch DNS cho php Zone Transfer ch t chi yu cu ca mt s my ch nht nh
26
BI 5. QUN TR MY CH WEB TRN WINDOWS SERVER 2003
5.1. Giao thc HTTP

HTTP l mt giao thc cho php Web Browser v Web Server c th giao tip vi nhau. HTTP bt u l 1 giao thc n gin ging nh vi cc giao thc chun khc trn Internet, thng tin iu khin c truyn di dng vn bn th thng qua kt ni TCP. Do , kt ni HTTP c th thay th bng cch dng lnh telnet chun. V d: -> telnet www.extropia 80 GET /index.html HTTP/1.0 <- C th cn thm k t xung dng p ng lnh HTTP GET , Web server tr v cho Client trang "index.html" thng qua phin lm vic telnet ny, v sau ng kt ni ch ra kt thc ti liu. Thng tin gi tr v di dng: <HTML> <HEAD> <TITLE>eXtropia Homepage</TITLE> [...] </HEAD> </HTML> Giao thc n gin yu-cu/p-ng (request/response) ny pht trin nhanh chng v c nh ngha li thnh mt giao thc phc tp (phin bn hin ti HTTP/1.1) . Mt trong cc thay i ln nht trong HTTP/1.1 l n h tr kt ni lu di (persistent connection). Trong HTTP/1.0, mt kt ni phi c thit lp n Server cho mi i tng m Browser mun download. Nhiu trang Web c rt nhiu hnh nh, ngoi vic ti trang HTML c bn, Browser phi ly v mt s lng hnh nh. Nhiu ci trong chng thng l nh hoc ch n thun l trang tr cho phn cn li ca trang HTML.
5.2. Nguyn tc hot ng ca Web Server

Ban u Web Server ch phc v cc ti liu HTML v hnh nh n gin. Tuy nhin, n thi im hin ti n c th lm nhiu hn th. u tin xt Web Server mc c bn, n ch phc v cc ni dung tnh. Ngha l khi Web Server nhn 1 yu cu t Web Browser, n s nh x ng
27
dn ny URL (v d: http://www.utehy.edu.vn/index.html) thnh mt tp tin cc b trn my Web Server. My ch sau s np tp tin ny t a v gi tp tin qua mng n Web Browser ca ngi dng. Web Browser v Web Server s dng giao thc HTTP trong qu trnh trao i d liu.
Hnh 5.1: S hot ng ca Web Server. Trn c s phc v nhng trang Web tnh n gin ny, ngy nay chng pht trin vi nhiu thng tin phc tp hn c chuyn gia Web Server v Web Browser, trong quan trng nht c l l ni dung ng (dynamic content). 5.2.1. C ch nhn kt ni Vi phin bn u tin, Web Server hot ng theo m hnh sau: - Tip nhn cc yu cu t Web Browser. - Trch ni dung t a . - Chy cc chng trnh CGI. - Truyn d liu ngc li cho Client. Tuy nhin, cch hot ng ca m hnh trn khng hon ton tng thch ln nhau. V d, mt Web Server n gin phi theo cc lut logic sau: - Chp nhn kt ni. - Sinh ra cc ni dung tnh hoc ng cho Browser. - ng kt ni. - Chp nhn kt ni. - Lp li qu trnh trn ... iu ny s chy tt i vi cc Web Sites n gin, nhng Server s bt u gp phi vn khi c nhiu ngi truy cp hoc c qu nhiu trang Web ng phi tn thi gian tnh ton cho ra kt qu. V d: Nu mt chng trnh CGI tn 30 giy sinh ra ni dung, trong thi gian ny Web Server c th s khng phc v cc trang khc na .
28
Do vy, mc d m hnh ny hot ng c, nhng n vn cn phi thit k li phc v c nhiu ngi trong cng 1 lc. Web Server c xu hng tn dng u im ca 2 phng php khc nhau gii quyt vn ny l: a tiu trnh (multi-threading) hoc a tin trnh (multi-processing) hoc cc h lai gia multi-processing v multi-threading. 5.2.2. Web Client L nhng chng trnh duyt Web pha ngi dng, nh Internet Explorer, Netscape Communicator.., hin th nhng thng tin trang Web cho ngi dng. Web Client s gi yu cu n Web Server. Sau , i Web Server x l tr kt qu v cho Web Client hin th cho ngi dng. Tt c mi yu cu u c x l bi Web Server. 5.2.3. Web ng Mt trong cc ni dung ng (thng gi tt l Web ng) c bn l cc trang Web c to ra p ng cc d liu nhp vo ca ngi dng trc tip hay gin tip. Cch c in nht v c dng ph bin nht cho vic to ni dung ng l s dng Common Gateway Interface (CGI). C th l CGI nh ngha cch thc Web Server chy mt chng trnh cc b, sau nhn kt qu v tr v cho Web Browser ca ngi dng gi yu cu. Web Browser thc s khng bit ni dung ca thng tin l ng, bi v CGI v c bn l mt giao thc m rng ca Web Server. Hnh v sau minh ho khi Web Browser yu cu mt trang Web ng pht sinh t mt chng trnh CGI.
Hnh 5.2: M hnh X l. Mt giao thc m rng na ca HTTP l HTTPS cung cp c ch bo mt thng tin nhy cm khi chuyn chng xuyn qua mng.
29
5.3. c im ca IIS 60
IIS 6.0 c sn trn tt c cc phin ca Windows 2003, IIS cung cp mt s c im mi gip tng tnh nng tin cy, tnh nng qun l, tnh nng bo mt, tnh nng m rng v tng thch vi h thng mi. 5.3.1. Cc thnh phn chnh trong IIS Hai thnh phn chnh trong IIS 6.0 l kernel-mode processes v user-mode processes, ta s kho st mt s thnh phn sau: HTTP.sys: L trnh iu khin thuc loi kernel-mode device h tr chng nng chuyn HTTP request n ti cc ng dng trn user-mode: - Qun l cc kt ni Transmission Control Protocol (TCP). nh tuyn cc HTTP requests n ng hng i x l yu cu (correct request queue). - Lu gi cc response vo vng nh (Caching of responses in kernel mode). - Ghi nhn nht k cho dch v WWW (Performing all text-based logging for the WWW service). Thc thi cc chc nng v Quality of Service (QoS) bao gm: connection limits, connection time-outs, queue-length limits, bandwidth throttling. WWW Service Administration and Monitoring Component: cung cp c ch cu hnh dch v WWW v qun l worker process. Worker process: L b x l cc yu cu (request) cho ng dng Web, worker process c th x l cc yu cu v gi tr kt qu di dng trang Web tnh, gi cc ISAPI Extensions, kch hot cc CGI handler, tp tin thc thi ca worker process c tn l W3wp.exe. Worker process chy trong user-mode. Inetinfo.exe l mt thnh phn trong user-mode, n c th np (host) cc dch v trong IIS 6.0, cc dch v ny bao gm: File Transfer Protocol service (FTP service), Simple Mail Transfer Protocol service (SMTP service), Network News Transfer Protocol service (NNTP service), IIS metabase. 5.3.2. IIS Isolation mode Trong IIS c hai ch hot ng tch bit l worker process isolation mode v IIS 5.0 isolation mode. C hai ch ny u da vo i tng HTTP Listener, tuy nhin nguyn tc hot ng bn trong ca hai ch ny hot v c bn l khc nhau. 5.3.3. Ch Worker process isolation Trong ch ny mi thnh phn chnh trong dch v Web c tch
30
thnh cc tin trnh x l ring bit (gi l cc Worker process) bo v s tc ng ca cc ng dng khc trong IIS, y l ch cung cp tnh nng bo mt ng dng rt cao v h thng nhn din mi ng dng chy trn Worker process c xem l mt network service trong khi cc ng dng chy trn IIS 5.0 c xem l LocalSystem v n c th truy xut v thay i hu ht cc ti nguyn c cung cp trn h thng ni b. S dng worker process isolation mode cho php tch hp thm cc tnhnng mi nh : application pooling, recycling v health detection, cc tnh nng ny khng c h tr trn IIS 5.0. M hnh x l ca Worker process Isolation mode:
Hnh 5.3: Kin trc ca IIS 6.0 chy trn ch Worker Process Isolation. Trong Hnh 5.3, ta thy cc on m x l cho tng ng dng c bit nh ASP, ASP.NET c np vo b x l tin trnh (Worker process) bi v cc b x l nh thi(run-time engine) ca ngn ng lp trnh ny c thc thi nh mt Internet server API (ISAPI) Cc bc minh ha cho mt yu cu x l trong worker process: Yu cu ca Client c chuyn n i tng HTTP Listener (HTTP.sys) HTTP.sys xc nh yu cu c hp l khng?. Nu yu cu khng hp l HTTP.sys s gi on m bo li v cho Client.
31
Nu yu cu hp l HTTP.sys s kim tra xem response ca request ny c trong kernel-mode cache khng, nu c th n s c response ny v gi v cho Client. Nu response khng c trong cache th HTTP.sys xc nh request queue ph hp v t request vo trong request queue. Nu hng i (request queue) khng c cung cp mt worker processes th HTTP.sys bo hiu cho WWW service khi to worker processes cho hnh i (request queue). Sau worker process x l cc request v gi tr kt qu v cho HTTP.sys. HTTP.sys gi kt qu v cho Client v log li cc yu cu ny. 5.3.3.1. IIS 50 Isolation Mode IIS 5.0 Isolation mode m bo tnh tng thch cho ng dng c pht trin t phin bn IIS 5.0.
Hnh 5.4: IIS chy trn IIS 5.0 Isolation mode. 5.3.3.2. So snh cc chc nng trong IIS 60 mode Bng m t vai tr ca IIS 6.0 khi chy trong IIS 5.0 isolation mode v worker process isolation mode.
32
Cc chc nng ca IIS Management Worker process Running in-process ISAPI extensions
IIS 5.0 Isolation Mode Host/Component
Worker Process Isolation Mode Host/Component Svchost.exe (WWW service W3wp.exe (Worker process)
Inetinfo.exe
W3wp.exe N/A (all of ISAPI extensions are in-process) W3wp.exe Svchost.exe/WWW service
Running out-of-process DLLHost.exe ISAPI extensions Running ISAPI filters HTTP.sys configuration IIS metabase FTP NNTP SMTP Inetinfo.exe Svchost.exe/WWW service Inetinfo.exe Inetinfo.exe Inetinfo.exe Inetinfo.exe
HTTP protocol support Windows ernel/HTTP.sys Windows kernel/HTTP.sys Inetinfo.exe Inetinfo.exe Inetinfo.exe Inetinfo.exe
Cc Isolation mode mc nh: Loi ci t Ci t mi IIS 6.0 Isolation mode Worker process isolation mode
Nng cp t cc phin bn trc ln IIS Vn gi nguyn Isolation mode 6.0 c Nng cp t IIS 5.0 Nng cp t IIS 3.0 IIS 5.0 isolation mode IIS 5.0 isolation mode
5.3.3. Nng cao tnh nng bo mt IIS 6.0 khng c ci t mc nh trn Windows 2003, ngi qun tr phi ci t IIS v cc dch v lin quan ti IIS. IIS 6.0 c ci trong secure mode do mc nh ban u khi ci t xong IIS ch cung cp mt s tnh nng c bn nht, cc tnh nng khc nh Active Server Pages (ASP), ASP.NET, WebDAV publishing, FrontPage Server Extensions ngi qun tr phi kch hot khi cn thit. H tr nhiu tnh nng chng thc: Anonymous authentication cho php mi ngi c th truy xut m khng cn yu cu username v password.
33
Basic authentication: Yu cu ngi dng khi truy xut ti nguyn phi cung cp username v mt khu thng tin ny c Client cung cp v gi n Server khi Client truy xut ti nguyn. Username v password khng c m ha khi qua mng. Digest authentication: Hot ng ging nh phng thc Basic
authentication, nhng username v mt khu trc khi gi n Server th n phi c m ha v sau Client gi thng tin ny di mt gi tr ca bm (hash value). controller. Advanced Digest authentication: Phng thc ny ging nh Digest authentication nhng tnh nng bo mt cao hn. Advanced Digest dng MD5 hash thng tin nhn din cho mi Client v lu tr trong Windows Server 2003 domain controller. Integrated Windows authentication: Phng thc ny s dng k thut bm xc nhn thng tin ca users m khng cn phi yu cu gi mt khu qua mng. Certificates: S dng th chng thc in t thit lp kt ni Secure Sockets Layer (SSL). .NET Passport Authentication: l mt dch v chng thc ngi dng cho php ngi dng to sign-in name v password ngi dng c th truy xut vo cc dch v v ng dng Web trn nn .NET. IIS s dng account (network service) c quyn u tin thp tng tnh nng bo mt cho h thng. - Nhn dng cc phn m rng ca file qua IIS ch chp nhn mt s nh dng m rng ca mt s tp tin, ngi qun tr phi ch nh cho IIS cc nh dng mi khi cn thit. 5.3.5. H tr ng dng v cc cng c qun tr IIS 6.0 c h tr nhiu ng dng mi nh Application Pool, ASP.NET. Application Pool: l mt nhm cc ng dng cng chia s mt worker process (W3wp.exe). worker process (W3wp.exe) cho mi pool c phn cch vi worker process (W3wp.exe) trong pool khc. Mt ng dng no trong mt pool b li (fail) th n khng nh hng ti ng dng ang chy trong pool khc. - Thng qua Application Pool gip ta c th hiu chnh c ch ti s dng vng
34
Digest authentication ch s dng trn Windows domain
nh o, ti s dng worker process, hiu chnh performance (v request queue, CPU), health, Identity cho application pool. ASP.NET: l mt Web Application platform cung cp cc dch v cn thit xy dng v phn phi ng dng Web v dch v XML Web. IIS 6.0 cung cp mt s cng c cn thit h tr v qun l Web nh: IIS Manager: H tr qun l v cu hnh IIS 6.0 Remote Administration (HTML) Tool: Cho php ngi qun tr s dng Command line administration scipts: Cung cp cc scipts h tr cho
Web Browser qun tr Web t xa. cng tc qun tr Web, cc tp tin ny lu tr trong th mc %systemroot%\System32.
5.3. Ci t v cu hnh IIS 60

5.3.1. Ci t IIS 60 Web Service IIS 6.0 khng c ci t mc nh trong Windows 2003 server, ci t IIS 6.0 ta thc hin cc bc nh sau: Chn Start | Programs | Administrative Tools | Manage Your Server.
Hnh 5.5: Manage Your Server Roles. T Hnh 5.6 ta chn biu tng Add or remove a role, chn Next trong hp thoi Preliminitary Steps Chn Application server (IIS, ASP.NET) trong hp thoi server role, sau chn Next.
35
Hnh 5.6: Chn loi Server. Chn hai mc ci t FrontPage Server Extentions v Enable ASP.NET, sau chn Next, chn Next trong hp thoi tip theo.
Hnh 5.7: la chn ty chn cho Server. Sau h thng s tm kim I386 source ci t IIS, nu khng tm c xut hin yu cu ch nh ng dn cha b ngun I386, sau ta chn Ok trong hp thoi Hnh 5.8.
36
Hnh 5.8: Ch nh I386 source. Chn Finish hon tt qu trnh. Tuy nhin ta cng c th ci t IIS 6.0 trong Add or Remove Programs trong Control Panel bng cch thc hin mt s bc in hnh sau: M ca s Control Panel | Add or Remove Programs | Add/Remove Windows Components.
Hnh 5.9: Chn Application Server. Chn Application Server, sau chn nt Details Chn Internet Information Services, sau chn nt Details
37
Hnh 5.10: Chn IIS subcomponents. Chn mc World Wide Web service, sau chn nt Details
Hnh 5.11: Chn WWW service. Sau ta chn tt c cc Subcomponents trong Web Service
Hnh 5.12: Chn cc thnh phn trong WWW service.
38
5.3.2. Cu hnh IIS 60 Web service Sau khi ta ci t hon tt, ta chn Administrative Tools | Information Service (IIS) Manager, sau chn tn Server (local computer) Trong hp thoi IIS Manager c xut hin 3 th mc: Application Pools: Cha cc ng dng s dng worker process x l cc yu cu ca HTTP request. Web Sites: Cha danh sch cc Web Site c to trn IIS. Web Service Extensions: Cha danh sch cc Web Services cho php hay khng cho php Web Server c th thc thi c mt s ng dng Web nh: ASP, ASP.NET, CGI, WebDAV,
Hnh 5.13: IIS Manager. Trong th mc Web Sites ta c ba Web Site thnh vin bao gm: Default Web Site: Web Site mc nh c h thng to sn. Microsoft SharePoint Administration: y l Web Site c to cho FrontPage Server Administration: Web Site h tr mt s thao tc qun tr h thng qua Web. Khi ta cu hnh Web Site th ta khng nn s dng Default Web Site t chc m ch da Web Site ny tham kho mt s thuc tnh cn thit do h thng cung cp cu hnh Web Site mi ca mnh. 5.3.2.1. Mt s thuc tnh c bn Trc khi cu hnh Web Site mi trn Web Server ta cn tham kho mt s thng tin cu hnh do h thng gn sn cho Default Web Site. tham kho
39
thng tin cu hnh ny ta nhp chut phi vo Default Web Site chn Properties.
Hnh 5.14: Thuc tnh Web Site. Tab Web Site: m t mt s thng tin chung v dch v Web nh: TCP port: ch nh cng hot ng cho dch v Web, mc nh gi tr ny l 80. SSL Port: Ch nh port cho https, mc nh https hot ng trn port 443. https cung cp mt s tnh nng bo mt cho ng dng Web cao hn http. Connection timeout : Ch nh thi gian duy tr mt http session. Cho php s dng HTTP Keep-Alives. Cho php ghi nhn nht k (Enable logging) Performance Tab: cho php t gii hn bng thng, gii hn connection cho Web site. Home Directory Tab: Cho php ta thay i Home Directory cho Web Site, gii hn quyn truy xut, t mt s quyn hn thc thi script cho ng dng Web ( nh ta t cc thng s: Application name, Execute permission, Application pool)
40
Hnh 5.15: Home Directory Tab. T Hnh 5.15 ta chn nt Configuration c th cu hnh cc extensions v .asp, .aspx, .asa, cho Web Application (tham kho Hnh 5.16)
Hnh 5.16: Cu hnh Script cho Web Application. Documents Tab: thm hoc thay i trang Web mc nh cho Web Site (tham kho Hnh 5.17).
41
Hnh 5.17: Ch nh trang Web mc nh cho Web Site. Directory Security Tab: t mt s phng thc bo mt cho IIS (tham kho chi tit trong mc bo mt cho dch v Web) 5.3.2.2. To mi mt Web site IIS cung cp hai phng thc to mi Web Site: - To Web Site thng qua Creation Wizard ca IIS manager. - To Web Site thng qua lnh iisweb.vbs. - To Web Site thng qua Web Site Creation Wizard ca IIS manager. - Nhp chut phi vo th mc Web Sites | New | Web Site | Next. - Ta cung cp tn Web Site trong hp thoi Description | Next. - Ch nh cc thng s v (Tham kho Hnh 5.18): - Enter the IP address to use for this Web site: Ch nh a ch s dng cho Web Site, nu ta ch nh All Unassigned c ngha l HTTP c hot ng trn tt c cc a ch ca Server. - TCP port this Web site should use: Ch nh cng hot ng cho dch v. - Host Header for this Web site (Default:None): Thng s ny nhn din tn Web Site khi ta mun to nhiu Web Site cng s dng chung mt a ch IP th ta thng dng thng s ny m t tn cc Web Site , do khi ta ch t chc mt Web Site tng ng vi 1 a ch IP th ta c th khng cn s dng thng s ny.
42
Hnh 5.18: Ch nh IP Address v Port. Trong hp thoi Web Site Home Directory ch nh th mc home ca Web Site (th mc lu tr ni dung ca Web Site) v ch nh Anonymous c c quyn truy xut Web Site hay khng (tham kho Hnh 5.19)
Hnh 5.19: Ch nh Home Directory cho Web. Ch nh quyn hn truy xut cho Web Site (tham kho Hnh 5.20): Read: Quyn c truy xut ni dung th mc. Run scripts (such as ASP): Quyn c thc thi cc trang ASP. Execute (such as ISAPI Application for CGI): Quyn c thc thi cc ng dng ISAPI. Write: Quyn ghi v cp nht d liu ca Web Site. Browse: Quyn lit k ni dung th mc (khi khng tm c trang ch
43
mc nh)
Hnh 5.20: Thit lp quyn hn truy xut. - Chn Finish hon tt qu trnh. To Web Site thng qua lnh iisweb.vbs
C php lnh: iisweb.vbs /create <Home Directory> Site Description" /i <IP Address> /b <Port>. Cc bc thc hin: - Nhp chut vo Start | Run | cmd. - T du nhc lnh (command prompt) nhp vo lnh: iisweb.vbs/create c:\inetpub\wwwroot\newdirectory "MyWebSite" /i 123.456.789 /b 80. 5.3.2.3. To Virtual Directory Thng thng ta to th mc o (Virtual Directory hay cn gi l Alias) nh x mt ti nguyn t ng dn th mc vt l thnh ng dn URL, thng qua ta c th truy xut ti nguyn ny qua Web Browser. ng dn vt l C:\Inetpub\wwwroot Tn Alias Tn th mc gc (none) a ch URL http://SampleWebSite
\\Server2\SalesData D:\Inetpub\wwwroot\Quotes
Customers None
http://SampleWebSite/Customers http://SampleWebSite/Quotes
44
D:\Marketing\PublicRel
Public
http://SampleWebSite/public
Cc bc to Virtual Directory: Nhp chut phi vo tn Web Site cn to chn New, chn Virtual Directory (Hnh 5.21).
Hnh 5.21: To Virtual Directory. Chn Next, sau ch nh tn Alias cn to (tham kho Hnh 5.22)
Hnh 5.22: Ch nh tn Alias Chn Next t bc 2, sau ch nh th mc cc b hoc ng dn mng cn nh x, Ch nh quyn hn truy xut cho Alias, cui cng ta chn Finish
45
hon tt qu trnh. 5.3.2.3. Cu hnh bo mt cho Web Site IIS cung cp mt s tnh nng bo mt cho Web Site nh (tham kho Hnh 19.23): Authentication And Access Control: IIS cung cp 6 phng thc chng thc, kt hp quyn truy cp NTFS bo v vic truy xut ti nguyn trong h thng. IP address and domain name restriction: Cung cp mt s tnh nng gii hn host v network truy xut vo Web Site. Secure communication: Cung cp mt s tnh nng bo mt trong giao tip gia Client v Server bng cch Server to ra cc giy chng nhn cho Client (Client Certificate) v yu cu Client khi truy xut ti nguyn vo Server th phi gi giy chng nhn Server xc nhn yu cu c hp l hay khng.
Hnh 5.23: Directory Security Tab. Cu hnh Authentication And Access Control: t Hnh 5.23 ta chn nt Editchn cc phng thc chng thc cho ph hp, mc nh h thng khng yu cu chng thc v cho mi ngi s dng anonymous truy xut Web Site:
46
Hnh 5.24: Chn Phng thc chng thc. - Cu hnh IP address and domain name restriction: T Hnh 5.23 ta chn nt Edit
Hnh 5.25: Gii hn truy xut cho host, network v domain. - Cu hnh Secure communication: T Hnh 5.23 nt Server Certificate to giy chng nhn Client, nt Edit hiu chnh cc yu cu chng nhn cho Client (Hnh 5.26).
47
Hnh 5.26: Thay i thao tc chng nhn. 5.3.2.5. Cu hnh Web Service Extensions IIS Web Service Extensions cung cp rt nhiu cc dch v m rng nh: ASP, ASP.NET, Frontpage Server Extensions 2002 WebDAV, Server Side Includes, CGI Extensions, ISAPI Extensions. Thng qua IIS Web Service Extensions ta c th cho php hoc cm Web Site h tr cc dch v tng ng (Nu trn Web Application ca ta c s dng cc ng dng trn th ta phi kch hot Web Service tng ng)
48
Hnh 5.27: Cu hnh Web service extensions. 5.3.2.6. Cu hnh Web Hosting IIS cho php ta to nhiu Web Site trn mt Web Server, k thut ny cn gi l Web Hosting. nhn din c tng Web Site Server phi da vo cc thng s nh host header name, a ch IP v s hiu cng Port. To nhiu Web Site da vo Host Header Names: y l phng thc to nhiu Web Site da vo tn host , c ngha rng ta ch cn mt a ch IP i din cho tt c cc host name. Cc bc to: Dng DNS to tn (hostname) cho Web Site. Nhp chut phi vo th mc Web Sites trong IIS Manager chn New, chn Web Site, tip theo chn Next, m t tn (Descriptions) chn Web Site. - Cung cp host name (V d ta nhp tn: www.csc.utehy.edu.vn) cho Web Site cn to trong Textbox Host Header Name ca hp thoi IP Address And Port Settings (tham kho Hnh 5.28). Hnh 5.28: To Host Header Name. - Sau ta thc hin cc thao tc chn Home Directory, t quyn hn cho Web SiteCui cng chn Finish hon tt qu trnh. To nhiu Web Site da vo a ch IP: i vi phng thc ny tng ng mt tn Web Site ta phi cung cp mt a ch IP. Do nu nh ta to n Web Site th ta phi to n a ch, chnh v l ny nn phng thc ny t s dng hn phng thc 1. Cc bc to: - Ta phi thm mt hoc nhiu a ch IP cho card mng. - Dng DNS to mt hostname tng ng vi IP mi va to. Nhp chut phi vo th mc Web Sites trong IIS Manager chn New, chn Web Site, tip theo chn Next, m t tn (Descriptions) chn Web Site. - Chn mt a ch IP c th cho Web Site cn to trong ty chn Enter the IP address to use for this Web site ca hp thoi IP Address And Port Settings (Hnh 5.29).
49
Hnh 5.29: Chn a ch IP cho Web site. - Sau ta thc hin cc thao tc chn Home Directory, t quyn hn cho Web SiteCui cng chn Finish hon tt qu trnh. To nhiu Web Site da vo Port: Mc nh HTTP port hot ng trn port 80 v HTTPS hot ng trn port 443, thay v mi Web Site iu hot ng trn cng 80 hoc 443 th ta s i Web Site hot ng trn cng (port) khc (v d nh 8080), v th ta ch cn dng mt a ch IP cung cp cho tt c cc Web Site. Do khi ta truy xut vo Web Site th ta phi ch nh cng hot ng cho dch v (http://www.csc.utehy.edu.vn:8080). Cc cu hnh: - Dng DNS to mt hostname tng ng cho tng Web Site nh x v cng mt a ch IP. Nhp chut phi vo th mc Web Sites trong IIS Manager chn New, chn Web Site, tip theo chn Next, m t tn (Descriptions) chn Web Site. - Ta ch nh thng s Port (v d: 8080) trong Textbox c tn TCP port for this Web site should use ca hp thoi IP Address And Port Settings (Hnh 5.30).
50
Hnh 5.30: Chn a ch IP cho Web Site. - Sau ta thc hin cc thao tc chn Home Directory, t quyn hn cho Web SiteCui cng chn Finish hon tt qu trnh. 5.3.2.7. Cu hnh IIS qua mng (Web Interface for Remote Administration) IIS cung cp c ch qun tr dch Web v qun tr mt s tnh nng c bn ca h thng qua mng, s dng cng c ny ta phi ci thm cng c Remote Administration (HTML)
Hnh 5.31: Ci t cng c qun tr. Truy cp vo Administration Web Server qua trnh duyt (Web Browser) thng qua a ch URL: http://<Web Server>:8099 (Hnh 5.32), sau ch nh username, password truy xut vo Server.
51
Hnh 5.32: Truy xut vo Administration Web Server. Sau khi ng nhp thnh cng, giao din Server Administration hin th (Hnh 5.33):
Hnh 5.33: Giao din qun tr h thng qua Web. Mt s chc nng chnh c cung cp trong Administration Server. Tn Tab Welcome Chc nng Cho php hin th li cho, thay i mt khu ca administrator, thay i tn my,. Theo di trng thi ca h thng Qun l cc Web Site cu hnh Thay i thng tin cu hnh cho Web Service v FTP Service
52
Status Sites Web Server
Network Users Maintenance Help
Thay i thng tin cu hnh mng cho Server Qun l user Cung cp mt s thao tc duy tr v sa li cho h thng Cung cp cc tr gip v cu hnh
5.3.2.8. Qun l Web site bng dng lnh To Web Site: Ta dng lnh iisweb.vbs (file scripte ny c lu tr trong th mc systemroot\System32) to mt Web site mi trn my ni b hoc trn my khc l Windows 2003 member server chy IIS 6.0. C php lnh: Iisweb.vbs /create Path SiteName [/b Port] [/I IPAddress] [/d HostHeader] [/dontstart] [/s Computer] [/u [Domain\]User [/p password] ] Danh sch tham s: Tn tham s Path SiteName /b Port /I IPAddress /d HostHeader /dontstart /s Computer ngha Ch nh v tr ng dn a lu tr ni dung Web site M t tn Web site. Ch nh TCP Port cho Web Site Ch nh a ch ip cho Web Site. Ch nh hostheader name cho Web Site. Ch nh cho Web Site khng khi to t ng khi to. Ch nh tn my hoc a ch IP trn my xa (s dng trong trng hp to mi mt Web Site trn my tnh xa /u [Domain\]User Chy script lnh vi username c ch nh, account ny phi l thnh vin ca nhm Administrators, mc nh chay script vi username hin hnh Ch nh mt khu cho account ch nh trong tham s /u
/p password
V d: iisweb /create C:\Rome "My Vacations" /d www.reskit.com /dontstart Hoc dng lnh: iisweb /create C:\New Initiatives\Marketing\HTMFiles 172.30.163.244 /s SVR01 /u Admin6 /p A76QVJ32# "Marketing" /i
53
- Xa Web Site. C php lnh iisweb /delete WebSite [WebSite...] [/s Computer [/u [Domain\]User/p Password]] V d: iisweb /delete "My First Novel" 5.3.2.9. Sao lu v phc hi cu hnh Web Site IIS lu tr thng tin cu hnh theo nh dng Extensible Markup Language (XML) c tn MetaBase.xml tin ny thng lu v MBSchema.xml, tr trong cc th tp mc
systemroot\System32\Inetsrv. Do ngi qun tr c thao tc trc tip vo hai tp tin ny thay i thng tin cu hnh v IIS. Lu thng tin cu hnh: sao lu (backup) thng tin cu hnh cho Web Site ta nhp chut phi vo tn Web Site chn All Task, chn tip Save Configuration to a file(Hnh 12.34)
Hnh 5.34: sao lu cu hnh Web site - Sau ta ch nh tp tin cu hnh, ng dn th mc lu tr thng tin cu hnh, mt khu m ha cho tp tin cu hnh.
Hnh 5.35: Sao lu cu hnh Web Site. Phc hi cu hnh Web Site t file cu hnh *.XML:
54
phc hi thng tin cu hnh t tp tin cu hnh *.xml ta thc hin cc thao thc sau: Nhp chut phi vo tn th mc Web Sites chn New, chn Web Site (from file) sau hp thoi Import configuration xut hin (tham kho Hnh 5.36)
Hnh 5.36: Phc hi thng tin cu hnh. - Ch nh tp tin cu hnh t nt Browse sau nhp chut vo nt Read File, tp tin ch nh c Import vo hp thoi Select a configuration to import, cui cng chn nt OK hon tt qu trnh (tham kho Hnh 12.37).
Hnh 5.37: Phc hi cu hnh cho Web Site. 5.3.2.5. Cu hnh Forum cho Web Site Trong phn ny ta cu hnh mt Web din n tho lun SnitzTM Forums 2000 c vit bng ngn ng ASP ca nhm tc gi Michael Anderson, Pierre Gorissen, Huw Reddick and Richard Kinser, thng qua vic trin khai forum ny gip chng ta phn no hiu c bn cht c bn ca c ch cu hnh Web ng (h tr kt ni c s d liu MS Access, MS SQL Server, MySQL) vit bng ngn ng ASP, ASP.NET, PHP,Ta c th download forum ny t URL: http://forum.snitz.com/. Mt s bc c bn cu hnh forum: - Sau khi ta download tp tin sf2k_v34_051.zip (i vi phin bn V3.3.051) hon tt ta gii nn v lu tr ni dung trong th mc no (V d C:\Inetpub\forum). - Sau ta m tp tin config.asp (dng tin ch notepad) thay i mt s
55
thng tin cu hnh kt ni n tp tin lu tr c s d liu MS Access c tn snitz_forums_2000.mdb strDBType = "access" strConnString="Provider=Microsoft.Jet.OLEDB.3.0; DataSource=" & Server.MapPath("snitz_forums_2000.mdb")
Nu th mc lu tr ni dung ca forum khng phi l th mc con ca WebRoot th ta phi to mt Virtual Directory c tn forum nh x th mc a (C:\Inetpub\forum) thnh URL Path cho Web Site. Nhp chut phi vo Virtual Directory c tn forum chn Permissions cp quyn cho mi ngi c quyn NTFS l Full trn th mc ny. - Sau ta vo Internet Explorer truy xut vo forum v cu hnh thm mt s thng tin mi (tham kho Hnh 5.38)
Hnh 5.38: To table cho database. To Admin Account cho forum.
56
Hnh 5.39: To Admin account cho forum. ng nhp bng user qun tr v t chc forum.
Hnh 5.40: ng nhp forum.
57
Bi 6: KHI NIM CHUNG V H THNG TH IN T
6.1. Gii thiu th in t

6.1.1 - Th in t l g ? gi mt bc th thng thng ta c th mt mt vi ngy vi mt bc th trong nc v nhiu thi gian hn gi mt bc th ra nc ngoi. Do , tit kim thi gian v tin bc ngy nay nhiu ngi s dng th in t. Th in t c gi n ngi nhn rt nhanh, d dng v r hn nhiu so vi s dng th tay truyn thng. Vy th in t l g ? Ni mt cch n gin, th in t l mt thng ip gi t my tnh ny n mt my tnh khc trn mng my tnh mang ni dung cn thit t ngi gi n ngi nhn. Do th in t gi qua li trn mng v s dng tn hiu in v vy tc
Hnh 6.1
truyn rt nhanh. Ngoi ra bn c th gi hoc nhn th ring hoc cc bc in giao dch vi cc file nh km nh hnh nh, cc cng vn ti liu thm ch c bn nhc, hay cc chng trnh phn mm... Th in t cn c gi tt l E-Mail (Electronic Mail) l cch gi in th rt ph bin. E-Mail c nhiu cu trc khc nhau ty thuc vo h thng my vi tnh ca ngi s dng. Mc d khc nhau v cu trc nhng tt c u c mt mc ch chung l gi hoc nhn th in t t mt ni ny n mt ni khc nhanh chng. Ngy nay, nh s pht trin mnh m ca Internet (Mng Li Truyn Tin Ton Cu) ngi ta c th gi in th ti cc quc gia trn ton th gii. Vi li ch nh vy nn th in t hu nh tr thnh mt nhu cu cn phi c ca ngi s dng my vi tnh. Gi s nh bn ang l mt nh kinh doanh nh v cn phi bn hng trn ton quc. Vy lm th no m bn c th lin lc vi khch hng mt cch nhanh chng v d dng. Th in t l cch gii quyt tt nht v n tr thnh mt dch v ph bin trn Internet. Ti cc nc tin tin cng nh cc nc ang pht trin, cc trng i hc, cc c cu thng mi, cc c quan chnh quyn v.v. u v ang kt ni h thng my vi tnh ca h vo Internet s chuyn th in t c nhanh chng v d dng.
58
6.1.2. Li ch ca th in t Th in t c rt nhiu cng dng v chuyn nhanh chng v s dng d dng. Mi ngi c th trao i kin ti liu vi nhau trong thi gian ngn. Th in t ngy cng ng mt vai tr quan trng trong i sng, khoa hc, kinh t, x hi, gio dc, v an ninh quc gia. Ngy nay, ngi ta trao i vi nhau hng ngy nhng kin, ti liu vi nhau bng in th mc d cch xa nhau hng ngn cy s. V th in t pht trin da vo cu trc ca Internet cho nn cng vi s pht trin ca Internet, th in t cng ngy cng ph bin trn ton th gii. Ngi ta khng ngng tm cch khai thc n mc ti a v s hu dng ca n. Th in t pht trin c b xung thm cc tnh nng sau: Mi bc th in t s mang nhn dng ngi gi. Nh vy ngi nhn s bit ai gi th cho mnh mt cch chnh xc. Ngi ta s dng th in t gi th vit bng tay. C ngha l ngi nhn s c th in m ngi nhn vit bng tay. Thay v gi l th in bng ch, ngi gi c th dng in th gi ting ni. Ngi nhn s lng nghe c ging ni ca ngi gi khi nhn c th. Ngi gi c th gi mt cun phim hoc l nhng hnh nh lu ng cho ngi nhn. Trn y ch l vi th d in hnh m th in t ang pht trin.Vi trnh khoa hc k thut nh hin nay nhng vic trn s thc hin khng my kh khn. Nhng tr ngi ln nht hin gi l ng chuyn ti tn hiu ca Internet cn chm cho nn khng th no chuyn ti s lng ln ca tn hiu. Ngoi ra cn tr ngi khc nh my tnh khng sc cha ht tt c tn hiu m n nhn c. Nn bit rng nhng m thanh (voice) v hnh nh (graphics) thng to ra nhng s lng ln thng tin. Gn y ngi ta bt u xy dng nhng ng chuyn ti tc cao cho Internet vi lu lng nhanh gp trm ln so vi ng c. Hy vng rng vi tin trin nh vy, s c mt ngy mi ngi trn Internet s c nhiu li ch v vic s dng in th.
6.2. Cu trc ca a ch th in t
6.2.1 - Cu trc ca th in t
59
Hnh 1.3
Th in t (E-mail) tng t nh nhng bc th thng thng v chia lm hai phn chnh: Phn u (header) cha tn v a ch ca ngi nhn, tn v a ch ca nhng ngi s c chuyn n, ch ca th (subject). Tn v a ch ca ngi gi, ngy thng ca bc th. Thn ca th (body) cha ni dung ca bc th. Nh khi gi cc bc th bnh thng bn cn phi c a ch chnh xc. Nu s dng sai i ch hoc g nhm a ch, th th s khng th gi n ngi nhn v n s chuyn li cho ngi gi, v bo a ch khng bit (Address Unknown) Khi nhn c mt th in t, th phn u (header) ca th s cho bit n t u n, v n c gi i nh th no v khi no. N nh vic ng du bu in. Khng nh nhng bc th thng thng, nhng bc th thng thng c trong phong b cn th in t th khng c ring t nh vy m n nh mt tm thip postcard. Th in t c th b chn li v b c bi nhng ngi khng c quyn c. trnh iu v gi b mt ch c cch m ha thng tin gi trong th. a ch th in t Tng t nh vic gi th bng bu in, vic gi nhn th in t cng cn phi c a ch ca ni gi v a ch ca ni nhn. a ch ca E-Mail c theo cu trc nh sau: user-mailbox@domain-part (Hp-th@vng qun l) Vi user-mailbox l a ch ca hp th ngi nhn. C th hiu nh s nh v tn ng nh th bu in. Vng qun l tn min (domain-part) l khu vc qun l ca ngi nhn trn Internet. C th hiu n ging nh tn thnh ph, tn tnh v quc gia nh a ch nh trn th bu in. Th d ca mt dng a ch thng dng nht: ktm-vdc1@vdc.com.vn T phi sang tri, "vn" l h thng ca Vit Nam. "com" l hp th thng mi. "vdc" l tn ca mt my vi tnh do vdc qun l. "ktm-vdc1" l tn hp th ca my ch th in ca vdc. Trn my vi tnh tn l vdc.com.vn cn c th c nhiu hp th cho nhiu ngi khc th d nh lan@vdc.com.vn, diep@vdc.com.vn ... Tm li a ch th in t thng c hai phn chnh: v d ktm@vdc.com.vn Phn trc l phn tn ca ngi dng user name (ktm) n thng l hp th ca ngi nhn th trn my ch th in t. Sau l phn nh du (@). Cui cng l phn tn min xc nh a ch my ch th in t qun l th in t m ngi dng ng k (vdc.com.vn) v c hp th trn . N thng l tn ca mt c quan hoc mt t chc v n hot ng da trn hot ng ca h thng tn min. Phn cui ca domain cho bit phn no v ci a ch u hoc thuc v nc no qun l hay t chc no. V d nh nhng ci ph bin l: COM -- Thng mi.
60
EDU -- Cc trng i Hc. GOV -- C quan chnh quyn. MIL -- Qun i. NET -- Nhng trung tm ln cung cp dch v Internet. ORG -- Nhng hi on. CA -- Canada. AU -- Australi. v.v... a ch th t i khi c dng khc tuy nhin v phm vi ca bi nn khng nu ra ni y. Lm th no xc nh a ch ngi gi ? C mt kh khn l lm th no m bn c th c a ch th in t ca mt ai . Vy th c mt s cch m bn c a ch th in t Hi Tht r rng v cng l cch d nht bit hp th in t ca mt ai . Nu bn quen vi ngi bn cn c a ch th int t th ch cn nhc in thoi v hi n s gip bn tit kim nhiu thi gian S dng danh b N rt thun li nu c th xy dng c mt danh b a ch th in t ton th gii. Nh hin ti khng c mt danh b no nh vy c v c sau ny cng khng c. Ti sao vy ? Ti v vic tp hp danh sch hng triu a ch th in t trn th gii v lu gi n l rt kh khn bi ngi dng c xu hng thng xuyn i a ch th. V ng thi n cng l mt b mt ring t cng nh s in thoi nhiu ngi khng mun cho mi ngi bit. Nh bn c th truy nhp vo mt danh ba ni b thng c xy dng cho mt t chc hay mt c quan no . Xem danh thip Rt nhiu ngi khi tip xc giao dch gi danh thip v trn c danh sch a ch th in t ca h tin giao dch Xem t nhng th gi n Nu bn nhn c th in t t mt ai th c ngha l bn c a ch ca h ch bng cch xem a ni gi n. Rt nhiu chng trnh th nh Outlook v Yahoo Mail c th t ng ghi li a ch ngi gi n vo danh sch a ch ca bn. Nu khng bn m th gi n v khch chut lin tip hai ln vo trng FROM: n s hin thng tin v ngi gi. Tm kim trc tuyn trn mng Nu bn tm kim a ch ca mt t chc, mt vn phng hoc mt c quan hy s dng tm kim trn mng. V ta c th tm kim c mt s thng tin trn mng v thng nu l cc t chc c uy tn ta c th tm c trang web ca h v t xc nh c a ch. on
61
Khi bn hiu cu trc ca a ch th in t bn c th on ra a ch th. Thng cc t chc v cc c quan c domain name ring ca mnh. V du: sale@vdc.com.vn l phng bn hng ca cng ty VDC. Tng t nh vy bn c th on ra nhng xc xut l khng cao.
6.3. Kin trc v hot ng ca h thng th in t

Mun gi th in t ngi gi cn phi c mt account trn mt my ch th. Mt my ch c th c mt hoc nhiu account. Mi account u c mang mt tn khc nhau (userid). Mi account u c mt hp th ring (mailbox) cho account . Thng thng th tn ca hp th s ging nh tn ca account. Ngoi ra my vi tnh phi c ni trc tip hoc gin tip vi h thng Internet nu mun gi nhn th in t ton cu. Ngi s dng my vi tnh ti nh vn c th gi nhn th in t bng cch kt ni my vi tnh ca h vi mt my vi tnh khc bng my modem. C mt s ni cp pht account th in t min ph cho cc my vi tnh ti nh c th dng modem kt ni vi my vi tnh chuyn nhn th in t nh hotmail.com hoc yahoo.com .v.v. Ngoi ra, cn c rt nhiu c quan thng mi cung cp dch v hoc account cho my vi tnh ti nh nhng ngi s dng phi tr tin dch v hng thng. ng i ca th
Hnh 1.4
Mi mt bc th truyn thng phi i ti cc bu cc khc nhau trn ng n vi ngi dng. Tng t th in t cng chuyn t my my ch th in t ny (mail server) ti my ch t in t khc trn internet. Khi th c chuyn n ch th n c cha ti hp th in t ti my ch th in t cho n khi n c nhn bi ngi nhn. Ton b qu trnh x l ch xy ra trong vi pht, do n cho php nhanh chng lin lc vi mi ngi trn ton th gii mt cnh nhanh chng ti bt c thi im no d ngy hay m Gi, nhn v chuyn th nhn c th in t bn cn phi c mt ti khon (account) th in t. Ngha l bn phi c mt a ch nhn th. Mt trong nhng thun li hn vi th thng thng l bn c th nhn th in t t bt c u. Bn ch cn kt ni vo Server th in t ly th v my tnh ca mnh. gi c th bn cn phi c mt kt ni vo internet v truy nhp vo my ch th in t chuyn th i. Th tc tiu chun c s dng gi th l SMTP (Simple Mail Transfer Protocol). N c kt hp vi th tc POP (Post Office Protocol) v IMAP ly th.
62
Trn thc t c rt nhiu h thng vi tnh khc nhau v mi h thng li c cu trc chuyn nhn th in t khc nhau. V c s khc bit nh vy nn vic chuyn nhn th in t gia hai h thng khc nhau rt l kh khn v bt tin. Do vy, ngi ta t ra mt nghi thc chung cho th in t. C ngha l cc h thng my vi tnh u ng vi nhau v mt nghi thc chung gi l Simple Mail Transfer Protocol vit tt l SMTP (Nghi Thc n Gin Chuyn Vn Th T). Nh vo SMTP ny m s chuyn vn th t in t trn Internet tr thnh d dng nhanh chng cho tt c cc ngi s dng my vi tnh cho d h c s dng h thng my vi tnh khc nhau. Khi gi th in t th my tnh ca bn cn phi nh hng n my ch SMTP. My ch s tm kim a ch th in t (tng t nh a ch in trn phong b) sau chuyn ti my ch ca ngi nhn v n c cha cho n khi c ly v. Bn c th gi th in t n bt c ai trn th gii m c mt a ch th in t. Hu ht cc nh cung cp dch v Internet u cung cp th in t cho ngi dng internet. Chuyn th (Send Mail) Sau khi ngi s dng my vi tnh dng chng trnh th vit th v ghi r a ch ca ngi nhn th my tnh s chuyn bc th in n hp th ngi nhn. SMTP s dng nghi thc TCP (TCP protocol) chuyn vn th. V nghi thc TCP rt l hu hiu v c phn kim sot tht lc mt mt cho nn vic gi th in c hiu xut rt cao. Khi nhn c mnh lnh gi i ca ngi s dng, my vi tnh s dng nghi thc TCP lin lc vi my vi tnh ca ngi nhn chuyn th. i khi v my vi tnh ca ngi nhn b tt in hoc ng dy kt ni t my gi ti my nhn tm thi b h hng tm thi ti mt ni no (tranmission wire failure), hoc l c th l My Chuyn Tip (routers) trn tuyn ng lin lc gia hai my tm thi b h (out of order) th my gi khng cch no lin lc vi my nhn c. Gp trng hp nh vy th my gi s tm thi gi l th trong khu vc d tr tm thi. My gi sau s tm cch lin lc vi my nhn chuyn th. Nhng vic ny xy ra trong my vi tnh v ngi s dng s khng hay bit g. Nu trong khong thi gian m my vi tnh ca ni gi vn khng lin lc c vi my nhn th my gi s gi mt thng bo cho ngi gi ni rng vic vn chuyn ca l th in khng thnh cng. Nhn Th (Receive Mail) Nu my gi c th lin lc c vi my nhn th vic chuyn th s c tin hnh. Trc khi nhn l th th my nhn s kim sot tn ngi nhn c hp th trn my nhn hay khng. Nu tn ngi nhn th c hp th trn my nhn th l th s c nhn ly v th s c b vo hp th ca ngi nhn. Trng hp nu my nhn kim sot thy rng tn ngi nhn khng c hp th th my nhn s khc t vic nhn l th. Trong trng hp khc t ny th my gi s thng bo cho ngi gi bit l ngi nhn khng c hp th (user unknown). Sau khi my nhn nhn l th v b vo hp th cho ngi nhn th my
63
nhn s thng bo cho ngi nhn bit l c th mi . Ngi nhn s dng chng trnh th xem l th. Sau khi xem th xong th ngi nhn c th lu tr (save), hoc xa (delete), hoc tr li (reply) v.v... Trng hp nu ngi nhn mun tr li li l th cho ngi gi th ngi nhn khng cn phi ghi li a ch v a ch ca ngi gi c sn trong l th v chng trnh th s b a ch vo trong bc th tr li. Trm Phc V Th (Mail Server) Trn thc t, trong nhng c quan v hng xng ln, my vi tnh ca ngi gi th khng gi trc tip ti my vi tnh ca ngi nhn m thng qua cc my ch th in t (mail servers).V d: qu trnh gi th
Hnh 1.5
Nh hnh v pha trn cho thy, nu nh mt ngi my A gi ti mt ngi my B mt l th th trc nht my A s gi n my ch th in t X. Khi trm phc v th X nhn c th t my A th X s chuyn tip cho my ch th in t Y. Khi trm phc v th Y nhn c th t X th Y s chuyn th ti my B l ni ngi nhn. Trng hp my B b trc trc th my ch th Y s gi th. Thng thng th my ch th in t thng chuyn nhiu th cng mt lc cho mt my nhn. Nh v d trn trm phc v th Y c th chuyn nhiu th cng mt lc cho my B t nhiu ni gi n. Mt vi cng dng khc ca my ch th l khi ngi s dng c chuyn phi ngh mt thi gian th ngi s dng c th yu cu my ch th gi gim tt c nhng th t trong thi gian ngi s dng vng mt hoc c th yu cu my ch th chuyn tt c th t ti mt ci hp th khc. 6.3.1.Gii thiu v giao thc SMTP Cng vic pht trin cc h thng th in t (Mail System) i hi phi hnh thnh cc chun chung v th in t. iu ny gip cho vic gi, nhn cc thng ip c m bo, lm cho nhng ngi cc ni khc nhau c th trao i thng tin cho nhau. C 2 chun v th in t quan trng nht v c s dng nhiu nht t trc n nay l X.400 v SMTP (Simple Mail Transfer Protocol). SMTP thng i km vi chun POP3. Mc ch chnh ca X.400 l cho php cc E-mail c th c truyn nhn thng qua cc loi mng khc nhau bt chp cu hnh phn cng, h iu hnh mng, giao thc truyn dn c dng. Cn chun SMTP miu t cch iu khin cc thng ip trn mng Internet. iu quan trng ca chun SMTP l gi nh my nhn phi dng giao thc SMTP gi th in t cho mt my ch lun lun hot ng. Sau , ngi nhn s n ly th t my ch khi no h mun dng giao thc POP (Post Office Protocol), ngy nay POP c ci tin thnh POP3 (Post Officce Protocol vertion 3).
64
Hnh 1.6
Th tc chun trn Internet nhn v gi ca th in t l SMTP (Simple Mail Transport Protocol). SMTP l th tc pht trin mc ng dng trong m hnh 7 lp OSI cho php gi cc bc in trn mng TCP/IP. SMTP c pht trin vo nm 1982 bi t chc IETF (Internet Engineering Task Force) v c chun ho theo tiu chun RFCs 821 v 822. SMTP s dng cng 25 ca TCP. Mcd, SMTP l th tc gi v nhn th in t ph bin nht nh n vn cn thit mt s c im quan trng c trong th tc X400. Phn yu nht ca SMTP l thit kh nng h tr cho cc bc in khng phi dng Text. Ngoi ra SMTP cng c kt hp thm hai th tc khc h tr cho vic ly th l POP3 v IMAP4. MIME v SMTP MIME (Multipurpose Internet Mail Extensions) cung cp thm kh nng cho SMTP v cho php cc file c dng m ho multimedia i km vi bc in SMTP chun. MIME s dng bng m Base64 chuyn cc file dng phc tp sang m ASCII chuyn i. MIME l mt tiu chun mi nh n hin c h tr bi hu ht cc ng dng, v bn phi thay i nu chng trnh th in t ca bn khng c h tr MIME. MIME c quy chun trong cc tiu chun RFC 2045-2049 S/MIME L mt chun mi ca MIME cho php h tr cho cc bc in c m ho. S/MIME da trn k thut m ho cng cng RSA v gip cho bc in khng b xem trm hoc chn ly. RSA Public Key/Private Key Authentication Vit tt cho Rivest, Shamir, v Adelman, l nhng ngi khm php ra cnh m ho ny, RSA cung cp cp kho public key/private key (kho cng cng/kho ring) m ho. D liu s c m ho bi kho cng cng v
65
ch c th c gii m bi kho ring. Vi S/MIME, ngi gi s s dng mt chui m ho ngu nhin s dng kho cng cng ca ngi nhn. Ngi nhn s gii m in bng cch s dng kho ring. Mun nghin cu k v m ho RSA vo trang web http://www.rsa.com S/MIME c nh ngha trong cc tiu chun RFCs 2311 v 2312. Lnh ca SMTP Mt cch n gin SMTP s dng cc cu lnh ngn iu khin bc in. Bng di l danh sch cc lnh ca SMTP Cc lnh ca SMTP c xc nh trong tiu chun RFC 821 Lnh M t Hello. S dng xc nh ngi gi in. Lnh ny ny i Cc km vi tn ca host gi in. Trong ESTMP (extended ln protocol), th lnh ny s l EHLO. ca MAIL Khi to mt giao dch gi th. N kt hp "from" xc nh SM TP ngi gi th. rt RCPT Xc nh ngi nhn th. n DATA Thng bo bt u ni dung thc s ca bc in (phn thn gi ca th). D liu c m thnh dng m 128-bit ASCII v n n bn c kt thc vi mt dng n cha du chm (.). c RSET Hu b giao dch th th VRFY S dng xc thc ngi nhn th. nh NOOP N l lnh "no operation" xc nh khng thc hin hnh ng n th g y QUIT Thot khi tin trnh kt thc v d SEND Cho host nhn bit rng th cn phi gi n u cui khc. sau: Sau y l nhng lnh khc nh khng yu cu phi c. Xc nh bi RFC 220 821: rec SOML Send or mail. Bo vi host nhn th rng th phi gi n u eivi cui khc hoc hp th. ngd SAML Send and mail. Ni vi host nhn rng bc in phi gi ti om ain. ngi dng u cui v hp th. co EXPN S dng m rng cho mt mailing list. mS HELP Yu cu thng tin gip t u nhn th. erv er TURN Yu cu host nhn gi vai tr l host gi th. ES MTP Sendmail 8.8.8+Sun/8.8.8; Fri, 30 Jul 1999 09:23:01 HELO host.sendingdomain.com 250 receivingdomain.com Hello host, pleased to meet you. MAIL FROM: HELO
66
250 Sender ok. RCPT TO: 250 Recipient ok. DATA 354 Enter mail, end with a . on a line by itself Here goes the message. . 250 Message accepted for delivery QUIT 221 Goodbye host.sendingdomain.com V bc th s trng nh sau:
From username@sendingdomain.com Fri Jul 30 09:23:39 1999 Date: Fri, 30 Jul 1999 09:23:15 -0400 (EDT) From: username@sendingdomain.com Message-Id:
Content-Length: 23 Here goes the message. M trng thi ca SMTP Khi mt MTA gi mt lnh SMTP ti MTA nhn th MTA nhn s tr li vi mt m trng thi cho ngi gi bit ang c vic g xy ra u nhn. V di y l bng m trng thi ca SMTP theo tiu chun RFC 821. Mc ca trng thi c xc nh bi s u tin ca m (5xx l li nng, 4xx l li tm thi, 1xx3xx l hot ng bnh thng). SMTP m rng (Extended SMTP) SMTP th c ci thit ngy cng p ng nhu cu cao ca ngi dng v l mt th tc ngy cng c ch. Nh d sao cng cn c s m rng tiu chun SMTP v chun RFC 1869 ra i b xung cho SMTP. N khng ch m rng m cn cung cp thm cc tnh nng cn thit cho cc lnh c sn. V d: lnh SIZE l lnh m rng cho php nhn gii hn ln ca bc in n. Khng c ESMTP th s khng gii hn c ln ca bc th. Khi h thng kt ni vi mt MTA, n s s dng khi to th ESMTP thay HELO bng EHLO. Nu MTA c h tr SMTP m rng (ESMTP) th n s tr li vi mt danh sch cc lnh m n s h tr. Nu khng n s tr li vi m lnh sai (500 Command not recognized) v host gi s quay tr v s dng SMTP. Sau y l mt tin trnh ESMTP: 220 esmtpdomain.comServer ESMTP Sendmail 8.8.8+Sun/8.8.8; Thu, 22 Jul 1999 09:43:01 EHLO host.sendingdomain.com 250-mail.esmtpdomain.com Hello host, pleased to meet you 250-EXPN 250-VERB
67
250-8BITMIME 250-SIZE 250-DSN 250-ONEX 250-ETRN 250-XUSR 250 HELP QUIT 221 Goodbye host.sendingdomain.com Cc lnh c bn ca ESMTP Lnh EHLO 8BITMIME SIZE SMTP Headers C th ly c rt nhiu thng tin c ch bng cch kim tra phn header ca th. Khng ch xem c bc in t u n, ch ca th, ngy gi v nhng ngi nhn. Bn cn c th xem c nhng im m bc in i qua trc khi n c hp th ca bn. Tiu chun RFC 822 quy nh header cha nhng g. Ti thiu c ngi gi (from), ngy gi v ngi nhn (TO, CC, hoc BCC) Header ca th khi nhn c cho php bn xem bc in i qua nhng u trc khi n hp th ca bn. N l mt dng c rt tt kim tra v gii quyt li. Sau y l v d: From someone@mydomain.COM Sat Jul 31 11:33:00 1999 Received: from host1.mydomain.com by host2.mydomain.com (8.8.8+Sun/8.8.8) with ESMTP id LAA21968 for ; Sat, 31 Jul 1999 11:33:00 -0400 (EDT) Received: by host1.mydomain.com with Internet Mail Service (5.0.1460.8) id ; Sat, 31 Jul 1999 11:34:39 -0400Message-ID: From: "Your Friend" To: "'jamisonn@host2.mydomain.com'" Subject: Hello There Date: Sat, 31 Jul 1999 11:34:36 -0400 Trn v d trn c th thy bc in c gi i t someone@mydomain.com. T mydomain.com, n c chuyn n host1. Bc in c gi t host2 ti host1 v chuyn ti ngi dng. Mi ch bc in dng li th
68
Miu t S dng ESMTP thay cho HELO ca SMTP S dng 8-bit MIME cho m d liu S dng gii hn ln ca bc in
host nhn c yu cu in thm thng tin vo header n bao gm ngy gi tm dng . Host2 thng bo rng n nhn c in lc 11:33:00. Host1 thng bo rng n nhn c bc in vo lc 11:34:36, S trn lch hn mt pht c kh nng l do s khng ng b gia ng h ca hai ni. Thun li v bt li ca SMTP Nh th tc X.400, SMTP c mt s thun li v bt li Thun li bao gm: - SMTP rt ph bin. - N c h tr bi nhiu t chc. - SMTP c gi thnh qun tr v duy tr thp. - SMTP n c cu trc a ch n gin. Bt li bao gm: - SMTP thiu mt s chc nng - SMTP thit kh nng bo mt nh X.400. - N ch gii hn vo nhng tnh nng n gin nht. 6.3.2. Gii thiu v giao thc POP v IMAP Trong nhng ngy thng u tin ca th in t, ngi dng c yu cu truy nhp vo my ch th in t v c cc bc in ca h . Cc chng trnh th thng s dng dng text v thiu kh nng thn thin vi ngi dng. gii quyt vn mt s th tc c pht trin cho php ngi dng c th ly th v my ca h hoc c cc giao din s dng thn thin hn vi ngi dng. V chnh iu em n s ph bin ca th in t. C hai th tc c s dng ph bin nht hin ny l POP (Post Office Protocol) v IMAP (Internet Mail Access Protocol). Post Office Protocol (POP) POP cho php ngi dng c account ti my ch th in t kt ni vo MTA v ly th v my tnh ca mnh, c th c v tr li li. POP c pht trin u tin l vo nm 1984 v c nng cp t bn POP2 ln POP3 vo nm 1988. V hin nay hu ht ngi dng s dng tiu chun POP3 POP3 kt ni trn nn TCP/IP n my ch th in t (s dng cng 110). Ngi dng in username v password. Sau khi xc thc u client s s dng cc lnh ca POP3 ly hoc xo th.POP3 ch l th tc ly th trn my ch th in t. POP3 c quy nh bi tiu chun RFC 1939. Lnh ca POP3 Lnh USER PASS Xc nh username Xc nh password
69
Miu t
STAT LIST RETR DELE NOOP RSET QUIT
Yu cu v trng thi ca hp th nh s lng th v ln ca th Hin danh sch ca th Nhn th Xo mt bc th xc nh Khng lm g c Khi phc li nh th xo (rollback) Thc hin vic thay i v thot ra
Internet Mail Access Protocol (IMAP) Th tc POP3 l mt th tc rt c ch v s dng rt n gin ly th v cho ngi dng. Nh s n gin cng em n vic thiu mt s cng dng cn thit. V d: POP3 ch l vic vi ch offline c ngha l th c ly v s b xo trn server. IMAP th h tr nhng thiu st ca POP3. IMAP c pht trin vo nm 1986 bi trng i hc Stanford. IMAP2 pht trin vo nm 1987. IMAP4, l bn mi nht ang c s dng v n c cc t chc tiu chun Internet chp nhn vo nm 1994. IMAP4 c quy nh bi tiu chun RFC 2060 v n s dng cng 143 ca TCP Lnh ca IMAP4 Lnh CAPABILITY LOGIN SELECT EXAMINE CREATE DELETE Lnh RENAME SUBSCRIBE UNSUBSCRIBE LIST LSUB STATUS APPEND i tn hp th Thm vo mt list ang hot ng Di khi list ang hot ng Danh sch hp th Hin danh sch ngi s dng hp th Trng thi ca h th (s lng th,...) Thm message vo hp th
70
Miu t Yu cu danh sch cc chc nng h tr Cung cp username v password Chn hp th in hp th ch c php c To hp th Xo hp th Miu t
AUTHENTICATE Xc nh s dng xc thc t mt server khc
CHECK CLOSE EXPUNGE SEARCH FETCH STORE NOOP LOGOUT
Yu cu kim tra hp th Thc hin xo v thot khi hp th Thc hin xo Tm kim trong hp th tm messages xc nh Tm kim trong ni dung ca message Thay i ni dng ca messages COPY Copy message sang hp th khc Khng lm g ng kt ni
So snh POP3 v IMAP4 C rt nhiu im khc nhau gia POP3 v IMAP4. Ph thuc vo ngi dng, MTA, v s cn thit , C th s dng POP3, IMAP4 hoc c hai. Li ch ca POP3 l : - Rt n gin. - c h tr rt rng Bi rt n gin nn, POP3 c rt nhiu gii hn. V d n ch h tr s dng mt hp th v th s c xo khi my ch th in t khi ly v IMAP4 c nhng li ch khc: - H tr xc thc rt mnh - H tr s dng nhiu hp th - c bit h tr cho cc ch vic lm vic online, offline, hoc khng kt ni IMAP4 ch online th h tr cho vic ly tp hp cc th t my ch, tm kim v ly message cn tm v ...IMAP4 cng cho php ngi dng chuyn th t th mc ny ca my ch sang th mc khc hoc xo th. IMAP4 h tr rt tt cho ngi dng hay phi di chuyn v phi s dng cc my tnh khc nhau.
71
BI 7: QUN TR H THNG MDAEMON
7.1.Cc tnh nng c bn ca MDaemon

7.1.1.Hng dn ci t v cu hnh cho h thng MDaemon a.Gii thiu Hin nay trn th trng c rt nhiu phn mm cho php ci t v qun tr h thng th in t v ni chung chng u c tnh nng c bn l tng t nh nhau. Nh quyn sch ny chng ti xin gii thiu v phn mm qun tr th in t MDaemon. V cc l do sau : - MDaemon l mt phn mm c giao din thn thin vi ngi dng (s dng giao din ho) - Chy trn cc h iu hnh ca Microsoft m hin nay hu ht cc my tnh ti Vit Nam u s dng Microsoft. - C kh nng qun l hng trm tn min v hng nghn ngi dng (ph thuc v nhiu yu t nh dung lng ng truyn, phn cng ca server). Ti thiu l: My tnh Pentium III 500MHz Internet Explorer 7.0 512 MB b nh Microsoft Windows 9x/ME/XP/NT/2000/2003 Kt ni TCP/IP vi mng internet hoc intranet Dung lng a cng l 30MB v tu thuc vo lng khch hng m thm dung lng a - C cung cp nhiu cng c hu ch cho vic qun tr h thng cng nh m bo an ton cho h thng th in t nh : Contant filter : Cho php chng Spam v khng cho php gi v nhn th n hoc t mt a ch xc nh MDaemon Virus Scan : Qut cc th i qua tm v dit virus email Ldap : MDaemon c h tr s dng th tc Ldap cho php cc my ch s dng chung c s d liu account Domain Gateway: H tr cho php qun l th nh mt gateway sau chuyn v cho cc tn min tng ng Mailing list: To cc nhm ngi dng Public/Shared folder: To th mc cho php mi ngi c quyn s dng chung d liu trong th mc DomainPOP: S dng POP ly th WorldClient: Cho php ngi dng c th qun l hp th ca mnh s dng web brower Dconf v WebAdmin : Cho php qun tr h thng th in t t xa v webadmin cho php qun tr trn web brower. . . (Ly MDaemon v t http://www.zensoftware.co.uk/mdaemon/downloads.asp n yu cu cn phi c bn quyn) MDaemon L phn mn qun l th in t chy trn window v c thit k c th s dng t
72
su account n hng nghn account. MDaemon rt n gin v d cu hnh, ng thi l mt phn mn c gi thnh rt hp l nh li c rt nhiu c tnh cho php d qun l hn cc h thng th in t khc trn th trng. MDaemon c thit k trn tng s dng c kt ni dial-up (khi a ch ip tnh c khng th cung cp) v cc kt ni trc tip. AntiVirus cho MDaemon AntiVirus cho MDaemon c kt hp vi MDaemon gii quyt vn v cc th in t c mang virus gi i v gi n my ch th trc khi chuyn n cho ngi s dng. Ci t v cu hnh rt n gian v ch cn t hn 5 pht v n t ng cp nhp d liu v virus theo lch m bn c th t. N cnh bo khi nhn c virus theo yu cu ca ngi qun tr khi pht hin ra virus. Bn c th download phn mn ti http://www.zensoftware.co.uk/mdaemon/downloads.asp b.Cc thng tin cn thit khi ci t v cu hnh MDaemon Trc khi ci t MDaemon bn cn phi c nhng thng tin sau (thng l thng tin ny c cung cp bi cc ISP nh cung cp dch v internet) Domain Name : Nu bn khng chc th n chnh l phn ng sau du @ ca hp th ca bn. V d nu hp th ca bn ti cng ty l abc@company.com th domain name ca bn s l company.com a ch IP ca DNS server m mail server ca bn s truy vn: (bao gm primary DNS v secondary DNS IP ): Nu v mt l do m bn khng bit a ch DNS, bn c th bit bng cch bm vo nt "Start" ca Window chn "Run". G "command" hoc "cmd" v nh enter. N s v ch DOS command v bn nh lnh "ipconfig/all" v bn s thy c a ch IP ca DNS. Lm th no m ISP c th chuyn th ca bn ti bn ? C hai gii php : Cc th nht l khi ISP thit lp domain name ca bn th th s c chuyn thng n my ch ca bn s dng SMTP. Trong trng hp ny bn khng cn phi s dng MDaemon DomainPOP Gii php th hai l khi ISP chuyn tt c th ca tn min ti account "catch-all" Pop3 trn my ch th in t trung chuyn ch bn kt ni vo ly th. Trong trng hp ny bn s phi s dng MDaemon DomainPOP. V s dng chc nng ny th bn cn phi bit cc chi tit cc thng tin bn ly th: ISP POP3 server name hoc IP POP3 account username POP3 account password MDaemon lm th no kt ni vo Internet ? Cng c hai phng cch. Cch th nht l PC t ng kt ni trc tip thng qua router/gateway vo mng internet. Trong trng hp ny bn khng cn thm thng tin. Cch th hai l PC kt ni thng qua modem v bn phi kt ni dial-up vo mng. Trong trng hp ny bn cn phi c thm thng tin Tn ca dial-up kt ni PC vo mng Username s dng kt ni Password s dng kt ni a ch IP ca MDaemon PC trong mng ni b Tt c cc thng tin trn th cn c bit trc khi ci v s dng my ch th in t v chnh l cc thng tin c bn cn thit.
73
c. Ci t Mdaemon Server
Cc bc ci t MDaemon M ca s MyComputer chn vo th mc cha phn mm MDaemon v bm kp chut vo bn bt u ci t ng k thng tin: ti y bn ch n gin l in tn v c quan ca bn vo v bn vo "Next". Nu bn c kha ng k ( registration key ) th bn in vo y, cn nu khng bn ci s ch c tc dng trong vng 30 ngy t ngy ci. Chn cc thnh phn ci t: Chn tt c cc phn v bm "Next" tip tc cho n khi ci t hon thnh v n mn hnh yu cu "DNS Configuration" Sn sng ci t ( Ready to install ): Khng c la chn y bn tip tc bm "Next". Domain name ca mail server ? (What is your domain name ?): Ti y bn in tn min ca bn v tip tc bm "Next" in account u tin (Please setup your first account): in thng s account ca ngi s qun l MDaemon Servers, n s l "postmaster" Cu hnh DNS (DNS configuration): Bm la chn "Use Windows DNS settings" s dng chnh DNS ca window, nh bn cng nn in a ch IP ca cc DNS server Thit lp ch lm vic ( Please setup your operation Mode ): Nn chn ch "Easy mode" thit lp cho my ch . N rt d dng chuyn i ch Thit lp ch ca h thng: Chn ch chy "As a service" th MDaemon s hot ng ch background trn my ch khi ngi qun tr khng login vo h thng. N rt quan trng bi v MDaemon server s cn hot ng 24/24 cc ngi dng c th truy nhp gi nhn th. Kt thc ( Finished ) hon thnh ci t
c.Cu hnh cho MDaemon Server

Sau khi ci t xong MDaemon s t ng chy v thu nh biu tng ti thanh menu di ca Window (gn ch bo ng h ca PC) Truy nhp MDaemon server n gin ch bm hai ln lin tip vo biu tng th
To account cho MDaemon cho php bn c th gi v nhn th trn internet vi account va c to. Mt s iu ch c bn khi c li khi ci Ti MDaemon Server: Kim tra in ng "Primary Domain" ti menu "Setup" ?. Kim tra xem in ti "Primary Domain v "HELO domain" in chnh xc ging nh phn sau ca k t "@" ca a ch th in t m bn mun thit lp ?. Nu s dng dial-up s dng modem v t MDaemon quay thoi t ng. Th hy kim tra kt ni, username, password c chnh xc khng. C th vo kim tra li ti phn menu "Setup" chn "RAS dialup/dialdown engine". Nu s dng DomainPOP ly th v th kim tra in ng POP3 Server v account ti POP3 Server chnh xc cha. C th vo "DomainPOP mail collection from" ti menu "Setup" kim tra.
74
Cui cng nu ti Client PC c vn v truy nhp vo MDaemon server ly v gi th th khin tra a ch IP hoc tn ca server POP3 v SMTP in ng cha. V cng phi kim tra li account v password s dng c ng khng (cn thn vi ch hoa v ch thng)
d.Ci t MDaemon Antivirus

C th ly MDaemon Antivirus v ti: http://ww.zensoftware.co.uk/mdav/downloads.asp y l phn mm cho khng i km vi phn mm MDaemon. Sau khi ly MDaemon Antivirus v th c th bt u ci t. MDaemon ci t v s dng rt d dng nh phi ch rng MDaemon Antivirus th c ci trn MDaemon Server. Sau khi ci t MDaemon Antivirus th n s chy t ng vi MDaemon. N s c mt biu tng ti thanh menu bn di ca Window Khi bt u chy ln u tin n s t ng cp nhp c s d liu mi nht v virus. Nh ta nn thit lp cho php MDaemon Antivirus thng xuyn cp nhp d liu v virus. Bm p vo biu tng MDaemon Antivirus n s m mt ca s cho php thit lp thi gian cp nhp virus (nn mi ngy cp nhp mt ln vo na m) 7.1.2.Cu hnh domain chnh cho h thng (Primary Domain Configuration) Thit lp cu hnh cho my ch th in t vo menu SetupPrimary domain v thit lp cc thng s cho tn min ca my ch th in t. Primary domain l gi tr mc nh ca cu hnh my ch s dng gi v nhn th. Ch cn primary domain c ci t l cho my ch th hot ng, nhng MDaemon c b xung thm tnh nng cho php qun l nhiu tn min (thit lp ti secondary domain) v lm gateway cho nhiu tn min (xem chi tit phn Gateway Domain ). Son tho Domain Configuration bao gm cc phn sau: Domain/ISP Phn ny cha tn ca Primary Domain v a ch ca my ch th. ng thi n c kh nng thit lp MDaemon s chuyn th n mt ISP hoc mt email gateway trc khi chuyn n ngi dng Ports Thit lp cc cng dch v s dng cho SMTP v POP m MDaemon s s dng thay cho cc cng mc nh. ng thi y cng c th thit lp cho cng ca IMAP v cng UDP s dng cho truy vn DNS server. Tt nht nn s dng cc gi tr mc nh v l cc gi tr chun m tt c cc th in t s dng gi v nhn th. Ch cc trng hp c bit hoc phc v cho mc ch c bit no th mi nn thay i. DNS Thit lp a ch IP ca DNS v DNS d phng cho php MDaemon truy vn xc nh tn min gi th. N cng bao gm cc thng s xc nh cc bn ghi MX v A ca tn min v bin php s l khi tin trnh SMTP b li. Timers Thit lp cc gii hn v thi gian m MDaemon s dng kt ni n cc my ch th gi nhn th v thi gian thit lp cc th tc gi nhn, thi gian truy vn DNS .v.v. V ng thi cng c gii hn ti a cho php trung chuyn my ch th m mt bc in c php trnh hin tng bc in chy vng (delivery loop).
75
Sessions Thit lp s lng cc tin trnh m MDaemon s dng gi v nhn th (SMTP,POP v IMAP) ti mt thi im. ng thi n cng thit lp s lng th m MDaemon s gi v nhn ng thi ... Dequeue Cho php MDaemon t ng gi cc lnh ETRN, QSBD hoc cc lnh tng t n ISP yu cu sp xp li cc th m n c php nhn v MDaemon ly v thng qua th tc SMTP ch khng phi l DomainPOP Archival iu khin cho php lu cc th c gi ra hoc vo MDaemon server. Cng c th thit lp lu c th ca mailing list v multiPOP. Pruning Xc nh thi gian ti a m account tn ti trn h thng m khng hot ng, nu qu thi gian s b xo. ng thi n cng thit lp thi gian gii hn cho cc bc in c lu gi trn h thng. Directories Thit lp ng dn n th mc m MDaemon s s dng lu cc bc in chun b gi i v nhn v (Remote v Local queues), file lu ... POP Check m bo an ton, nhiu ISP yu cu khch hng phi login vo hp th POP trc khi c php gi hoc nhn th t my ch th ca nh cung cp dch v. Unknown Local Mail Cc thit lp y cho php MDaemon xc nh phi lm g vi cc bc th ng vi tn min m n qun l nh khng bit hoc khng xc nh c hp th ca ngi dng. C rt nhiu la chn nh: Gi bc in ngc tr li ngi gi, gi ti Postmaster, chuyn vo th mc cha th li (Bad Message queue) hoc chuyn ti mt my khc. C th thit lp cc thng s mt cch c lp hoc kt hp cc thit lp. Domain/ISP
Hnh 7.1
76
Primary Domain Properties Domain name in primary domain name vo y. N l gi tr mc nh ca tn min khi to cc account mi. V d : mycompany.com HELO domain L tn min c s dng khi SMTP gi lnh HELO/EHLO bt u tin trnh bt tay gi th. Thng s dng gi tr ca domain name trn. Machine name S l tn c in vo header ca th khi nhn. Khi bn s dng nhiu hn mt server (v d nh server backup) th n s kh xc nh ng i ca th. Do in tn vo header ca th d dng trong vic xc nh ng i ca th v tm li. Nu khng in thng tin vo y th MDaemon s s dng phn domain name. Domain IP N chnh l a ch IP ca primary domain name ch n. Bind listening sockets to this IP only La chn ny cho php MDaemon ch s dng a ch IP c in ti "domain IP" thc hin dch v th in t. ISP or Smart Host Properties IP or smart hosts IP or domain name Tn ca my ch th ca ISP hoc a ch IP ca SMTP server cho php trung chuyn (relay) th qua. Send every outbound email message to this host La chn nu bn mun tt c cc th gi i u phi qua mt gateway server trc khi chuyn i. a ch ca my ch th trung chuyn c in trong IP or smart hosts IP or domain name. Gi tr ny rt hu dng gii quyt tnh trng mt khi lng ln th gi i c th chim dng ht ngun ti nguyn my ch. Send only undeliverable outbound mail to this host La chn nu bn mun chuyn cc th m khng chuyn i c n my ch th in trong ISP or smart hosts IP or domain name Attempt to send all mail direct without using an intermediate host Chn khi mun c gng chuyn trc tip tt c th m khng s dng trung chuyn. MDaemon s t cc th khng gi i c vo Retry System c gng chuyn th theo cc thng s c ci t trong Retry Configuration My ISP requires me to log in before sending mail. an ton, trnh cc ngi dng khng c php trung chuyn th qua my ch th th mt s ISP yu cu khch hng phi trao i account v password (authenticate) qua ESMTP AUTH hoc s dng POP trc khi gi th (POP before SMTP). Thit lp y yu cu ngi dng phi xc thc (authentication) trc khi gi th ( xem ISP AUTH di ). Retry queue settings Cho php thit lp cu hnh cho MDaemon chuyn cc th m khng chuyn c tc thi. ng thi thit lp thi gian v chu trnh chuyn th v phng cch x l khi th khng th chuyn i c.
77
Hnh 7.2
Retry Frequency Keep message in the primary queue for at least XX minutes Thit lp ny xc nh khong thi gian ca th lu trong primary queue (xp hng chuyn th i) trc khi c xo b v chuyn vo retry queue (xp hng c gi th m gi i nhng cha gi c). Primary queue s c gng chuyn th nhanh chng v lin tc hn retry queue (v khi th n primary queue th n s ln lt chuyn th i cn retry queue s nh k c gng chuyn th) Retry ending undeliverable mail once every XX minutes Khong thi gian gii hn m retry queue s c gng gi th i. Inform the sender when message is placed in retry queue Khi th c chuyn n retry queue th ngi gi s nhn c thng bo th b chuyn sang retry queue. Inform the sender when subseauent delivery attempts fail Nu c gng gi th ca retry queue khng thnh cng th mi ln c gng gi MDaemon s gi thng tin thng bo cho ngi gi. Ultimate Fate of Undeliverable Mail If a message is still undeliverable after XX days then Xc nh s ngy m th s trong retry queue trc khi b xo. Place the undeliverable message in the bad message queue Khi th trong retry queue vt qu s ngy xc nh ti "If A Message Is Still Undeliverable After xx Days Then", th th s b xo v chuyn mt bn vo th mc cha cc th li (bad message directory) Inform the sender that the message could not be delivered Khi th khng th gi i ( vt qu thi hn xc nh ti "If A Message Is Still Undeliverable After xx Days Then" ). MDaemon s gi mt thng bo n ngi gi rng th khng gi c v b xo. (Ni dung ca th thng bo trong file DELERR.DAT) Inform the postmaster that the message could not be delivered Nu chn th s thng bo cho postmaster khi th chc chn khng gi c i. . . . unless its an MDaemon auto-generated message La chn cho php khng gi thng bo cho postmaster khi th khng chuyn c l
78
th do h thng sinh ra (v d nh : thng bo nhn th, th t ng tr li, kt qu khi to account ...) ISP AUTH
Hnh 7.3
ISP Authentication Use ESMTP AUTH when sending mail to ISP gateway tng cng kh nng an ton, mt s ISP yu cu ngi dng phi login s dng ESMTP AUTH trc khi c php gi hoc nhn th thng qua mt ISP Server. Nu ISP yu cu th phi s dng c tnh ny cu hnh cho MDaemon kt ni s dng ESMTP AUTH. AUTH logon: in user logon vo y AUTH shared secret: in password s dng cho ESMTP AUTH Ports
Hnh 7.4
SMTP/ODMR server ports Listen for inbound SMTP events on this TCP port MDaemon s dng cng ny SMTP nhn th
79
Create outbound SMTP events using this TCP port MDaemon s dng cng ny SMTP gi th n mail server khc Listen for inbound ODMR events using this TCP port MDaemon s s dng cng ny nhn kt ODMR (on-demand mail relay) Dedicated SSL port for SMTP Cng ny s dng cho SMTP server s dng Secure Socket Layer POP/IMAP Server ports ( IMAP ch c vi bn MDaemon Pro ) Listen for inbound POP events on this TCP port MDaemon s dng cng ny cho kt ni POP n t clients ly th Create outbound POP events using this TCP port Cng ny s s dng khi MDaemon nhn th t mt POP3 server Dedicated SSL port for POP Cng ny s dng cho client kt ni MDaemon bng POP3 s dng SSL Listen for inbound IMAP events on this TCP port MDaemon s dng cng ny cho kt ni IMAP ca client ly th Dedicated SSL port for IMAP Cng s dng cho client kt ni n MDaemon bng IMAP s dng SSL DNS/LDAP/WebAdmin/MDConfig Server Ports Query DNS servers using this UDP port Cng m MDaemon s dng truy vn DNS server LDAP port for database & address book posting MDaemon s s dng cng ny kt ni n LDAP server. Listen for MDConfig connection on this TCP port MDaemon s dng cng ny kt ni vi MDConfig Listen for WebAdmin connection on this port MDaemon s dng cng ny kt ni vi WebAdmin Return port settings to defaults Nt ny cho php chuyn tt c cc gi tr cng trn v gi tr mc nh Bind to new port values now Khi bn thay i bt c gi tr cng no trn bn cn bn nt ny gi tr c hiu lc DNS
80
Hnh 7.5
DNS Server Settings Try to use DNS servers defined in windows TCP/IP settings La chn cho php MDaemon server ly a ch DNS thit lp cho h iu hnh Window s dng cho MDaemon truy vn DNS. Primary DNS server IP address in a ch IP ca DNS server MDaemon truy vn cc bn ghi th in t Backup DNS server IP address a ch IP ca DNS server s dng d phng cho trng hp Primary DNS c s c. Retry failed lookup attempts this many times Nu v mt l do no m truy vn n DNS li th MDaemon s thc hin mt s ln thit lp y. Nu bn c in DNS d phng th c hai server s c thc hin. MX Record Processing Query DNS server for MX records when delivering mail La chn hp iu kin ny nu bn mun MDaemon truy vn bn ghi MX khi chuyn th Use A record IP address found within MX record packets La chn hp iu kin ny khi s dng c bn ghi A cho truy vn th in t Send message to next MX host khi SMTP error occurs La chn hp iu khin ny s tip tc gi th n bn ghi MX c u tin thp hn nu Server ca bn ghi c u tin cao hn b li Abort delivery if MX return 5XX after RCPT command Bnh thng, MDaemon s lin tc chuyn th n cc server ca bn ghi MX. Khi nhn c m phn hi 5XX ca lnh RCPT trong kt ni SMTP th c gng gi th ny s b hu b. Immediately return mail when DNS says domain does not exist Nu la chn ny c chn th MDaemon s ngay lp tc gi phn hi n ngi gi khi DNS nhn c thng bo Domain Does Not Exist. N s ngn chn s khng cn thit chuyn cc th trong retry queue Local lookup tables Hosts file ...
81
Trc khi truy vn DNS, MDaemon trc tin s ly a ch x l t HOSTS file ca window trc xc nh a ch ni s kt ni n gi th. Nu HOSTS file c cha a ch IP ca domain cn truy vn th MDaemon s khng cn phi truy vn DNS server. Edit MXCACHE file MDaemon c mt file MXCACHE.DAT ti th mc ../APP/. File lu gi cc truy vn ca DNS s dng li. N cho php truy vn DNS hot ng nhanh hn. Bm vo nt ny xem v sa file MXCACHE.DAT. Edit hosts File Bm nt ny xem v sa file HOSTS. Timers
Hnh 7.6
Event Timers ( IMAP options available in Pro version only ) Wait XX seconds for sockets to connect before giving up Sau khi yu cu bt u kt ni MDaemon s i khong vi giy cho h thng pha kt ni n chp nhn kt ni. Nu h thng c kt ni n khng phn hi trong khong thi gian c thit lp th MDaemon s chuyn th ti Gateway host hoc l Retry Queue Wait XX seconds for protocol dialog to start before giving up Khi kt ni c thit lp vi remote host, trong khong thi gian c thit lp MDaemon s i cho remote host trao i th tc SMTP hoc POP3. Nu u remote host khng bt u trao i th tc trong khong thi gian c thit lp th MDaemon s chuyn th ti gateway host hoc Retry Queue tu thuc vo la chn ti Domain/ISP Wait XX second for MX DNS server responses L khong thi gian cho php MDaemon s i truy vn cho bn ghi MX ti DNS. Nu DNS khng tr li trong khong thi gian th MDaemon s chuyn th ti a ch IP khai bo bn ghi A. Nu vn khng c th n s chuyn th ti gateway host hoc retry queue ph thuc vo la chn ti Domain/ISP Wait XX second for A-record DNS server responses Tng t nh vi bn ghi MX nh l vi bn ghi A
82
SMTP and POP sessions timeout after XX inactive minutes Mt kt ni SMTP v POP s t ng kt thc nu khng c giao dich qua li gia hai bn trong khong thi gian xc nh. IMAP sessions timeout after XX inactive minutes Kt ni IMAP s t ng kt thc hot ng nu khng c giao dch qua li gia hai bn trong mt khong thi gian xc nh. IMAP NOOP and IDLE command trigger 1 minute inactivity timeout, La chn ny cho php IMAP khng thc hin giao dch th ch sau mt pht mi hu b khi c gi cc lnh NOOP hoc IDLE. Mt s IMAP clients s gi lnh NOOP n gin l ch gi kt ni vn tn ti d khng c mt giao dch thc s no ang hot ng. La chn ny cho php trnh cc kt ni nh vy v n cng gip phn lm gim bt tiu tn ti nguyn ca server. c bit l cho cc mail server c s dng nhiu IMAP. Loop Detection and Control Maximum message hop count (1-100) Tiu chun theo tiu chun RFC khi th trung chuyn quan mt server th n phi c gn thm phn header vo th. V la chn ny cho php mail server trnh c hin tng cc th b gi i gi lai quay vng dn n lng ph ti nguyn bng cch m s ln gi. Nu qu trnh gi vt qu gi tr c chn th th s c chuyn vo th mc bad message Latency Latency XX milliseconds Khong thi gian tr gia cc lnh ca cc th tc POP/SMTP/IMAP. N rt hu dng trnh tnh trng qu trnh x l ti u mail server nhanh hn kh nng x l ca u client. Sessions
Hnh 7.7
SMTP Maximum concurrent SMTP outbound sessions Gi tr c in y l s lng ln nht c th gi i bng SMTP trong mt ln
83
gi. Mi tin trnh s gi th ra n khi ht th trong queue hoc l n lng ln nht c xc nh trong Max SMTP outbound messages spooled per session . V d nu s th gi ra cn trong queue l 20 v gi tr c thit lp l 5 th ng thi s c 5 tin trnh cng thc hin v mi tin trnh gi i 4 th. Bn nn xc nh s tin tin trnh mt cch ph hp tn dng mt cch tt nht dung lng ng truyn. Nu nhiu tin trnh th s dn n tnh trng qu ti chim nhiu ti nguyn ca h iu hnh dn n khng hiu qu. Nn nh rng mi mt tin trnh SMTP thc hin chuyn th mt cch lin tc, do bn tin trnh gi hai th nhanh hn tm tin trnh gi i mi tin trnh mt th. Maximum SMTP outbound message spooled per session S lng ln ca th gi trong mt tin trnh trc khi dng v gii phng khi b nh. Thng l nn t l 0 tin trnh lin tc gi th n khi queue trng. Maximun concurrent SMTP inbound sessions S lng ng thi ca tin trnh SMTP gi n c chp nhn ng thi trc khi phn hi Server Too Busy POP/IMAP ( IMAP option available in Pro version only ) Maximum concurrent POP outbound sessions Gi tr ln nht c th ca cc tin trnh POP m MDaemon c kh nng to ly th v bng DomainPOP v MultiPOP. Mi tin trnh s ly th v cho n khi tt c cc kt ni ca DomainPOP v MultiPOP hon thnh v tt c th c ly v. V d: bn cn phi c 15 kt ni MultiPOP ly th cho ngi dng v gi tr y c t l 3. Th ng thi bn ch c th to c 3 tin trnh v mi mt tin trnh s ln lt ly th t 5 ngun MultiPOP. Tu vo kh nng ca ng truyn v thit b m thit lp s lng tin trnh y MDaemon thc hin tt nht. V nguyn tc bn c th thit lp nhiu tin trnh th cng tt nh n c th gy ra qu ti ca ng truyn v ht ngun ti nguyn ca Server dn n lm vic khng hiu qu. Nh rng mt tin trnh c to bi MDaemon s ly th cho n khi tt c th t c ly v. Do to 4 tin trnh ly t 20 ngun POP th tt hn l to 20 tin trnh v mi tin trnh ch ly t mt ngun. Tt nht l to t 2 n 4 cho s dng dialup v 5 cho s dng ISDN. Maximum concurrent POP/IMAP inbound sessions Gi tr ln nht ng thi m client c th kt ni n bng POP v IMAP m MDaemon cho php trc khi tr li Server Too Busy. Dequeue
84
Hnh 7.8
Dequeue Engine Signal ISP to dequeue waiting mail MDaemon s gi tn hiu n mt host xc nh host gi tr li cc th m thuc v MDaemon qun l. V d cc tn hiu nh ATRN, ETRN hoc QSND. Send signal once every [xx] times remote mail is processed Theo mc nh mi ln gi tn hiu dequeue th u nhn tn hiu s chuyn th. in s lng vo y ngn c mi ly gi tn hiu dequeue th u nhn tn hiu s gi th ngay. M phi xx ln gi tn hiu th u nhn mi gi th. V d: y t l 3 th c 3 ln gi tin hiu dequeue th u nhn tn hiu mi gi th. Remote Server Send signal to this remote host in host m MDaemon s gi tn hiu ly th v. Use this TCP port in cng m MDaemon s s dng kt ni n. Mc nh l 25 ( cng SMTP ) khi n s dng cho cc tn hiu ETRN hoc QSND. Cng 366 s dng cho ATRN v 79 s dng cho FINGER. Dequeue Instruction Send this string to host in chui m m MDaemon s gi ly th v. V d: vi ETRN yu cu in "ETRN" v sau l domain name ca th cn ly v. Send SMTP EHLO before transmitting string to host La chn cho php khi kt ni ti SMTP server gi tn hiu ly th v th tin trnh SMTP phi bt u vi host xc nh (in sau "EHLO") v cho php tin trnh ch s dng vi host xc nh ti SMTP "EHLO". I must authenticate before sending the dequeue signal (required for ATRN) Mt gii php an ton trnh vic ngi dng khng c php s dng dequeue th ca khch hng. Mt s ISP yu cu khch hng phi xc thc bng ESMTP
85
AUTH trc khi gi tn hiu dequeue. V trong trng hp th phi bm vo nt ny m hp "Dequeue AUTH" in thng tin xc thc Session Windows Hide dequeue session windows while they are in progress La chn ny cho php giu ca s ca tin trnh dequeue (n chy ngm) On-Demand Mail Relay (ODMR) ODMR (On-Demand Mail Relay) l gii php cho php Relay th in t tt nht hin nay so vi ETRN v cc gii php khc. Bi v n yu cu xc thc trc khi th c gi. Hn na vi cu lnh ATRM ca ESMTP n khng cn phi yu cu u client phi s dng a ch c nh (static IP Address) bi v n ngay lp tc o ngc vai tr gi nhn v s dng lun tin trnh va gi tn hiu yu cu gi d liu m khng cn phi to mt kt ni mi (nh ETRN). Dequeue AUTH
Hnh 7.9
Dequeue Authentication Use ESMTP AUTH when sending dequeue signal to host Ngoi vic yu cu ngi dng phi xc thc s dng account trc khi gi th. Mt s ISP yu cu xc thc trc khi gi tn hiu yu cu dequeue ly cc th ca n v. La chn ny s yu cu MDaemon gi cc thng tin xc thc trc khi nhn th v. AUTH logon Nu yu cn xc thc trc khi gi tin hiu ti queue mail th yu cu in AUTH logon vo y. AUTH shared secret in mt khu s dng xc thc (AUTH shared secret) c yu cu bi ISP. Archival
86
Hnh 7.10
Archive a copy of all inbound/outbound mail La chn cho php bt tnh nng archival. Archival c tc dng to thm mt bn ca cc th gi vo hoc ra MDaemon Server ri chuyn ti mt a ch xc nh in hp iu khin "Send a copy of every inbound/outbound message to these addresses" in mt hoc nhiu a ch th m mun gi ti khi cc th chuyn qua MDaemon (Cc a ch cch nhau du phy) La chn cho php Achivel c tc dng vi c th ca mailing list
Include MultiPOP collected mail in the archive also
La chn cho php Achivel c tc dng vi c cc th c ly v thng qua MultiPOP La chn cho php in (Archive Copy) vo phn Subject: ca cc bn th archivel Pruning
87
Hnh 7.11
Bng iu khin ny cho php thit lp cho cc account lu khng c s dng hoc cc th lu li lu trong hp th. Hng ngy vo na m MDaemon s xo cc th v cc accounts ht hn quy inh. Cng c bng iu khin tng t thit lp cho cc domain khc m MDaemon qun l v n nm trong phn Secondary Domains Account and Old Mail Pruning Automatically delete account if inactive for XX days (0 = never) Thit lp s ngy m bn mun account thuc domain khi khng hot ng s b xo. Gi tr 0 trong hp iu khin ngha l cc account s khng bao gi b xo d n khng hot ng trong thi gian bao lu. Delete messages older than XX days (0 = never) Thit lp s ngy c php m th nm trong hp th ca ngi s dng trc khi b xo. Gi tr 0 ngha l th s khng bao gi b xo d n nm trong hp th ca ngi s dng bao lu Delete deleted IMAP messages older than XX days (0 = never) Thit lp s ngy m IMAP messages thit lp cnh bo xo s b xo khi hp th ca ngi s dng Gi tr 0 ngha l th s khng b xo d thi gian l bao lu. Delete old messages from IMAP folders as well La chn cho php thit Delete messages older than Cng c tc dng vi cc th trong th mc IMAP. Khng la chn th th trong th mc IMAP s khng b xo d thi gian trong th mc l bao lu. Directories
88
Hnh 7.12 RAW formatted mail is picked up from this directory
in th mc m MDaemon cha cc th n c dng RAW. Th mc ny s c qut mi ln tin trnh x l cho cc th dng RAW, sau server s chuyn th thnh dng RFC-822 v chuyn n ngi nhn.
Bad messages (parsing errors, unknown users, etc) are placed here
in th mc m cc th li s c lu. Th li l cc th khng xc nh c ngi nhn v cc th c kh nng gy ra li cho h thng th ( virus, spam ...)
When collecting inbound mail, work files should be stored here
L th mc m MDaemon s cha cc th nhn v trc khi chuyn cho ngi nhn. Th mc ny ch s dng trong khi tin trnh SMTP ang thc hin.
RFC-822 compliant remote message queue (non-local mail only)
in th mc m MDaemon s s dng cho th i trc khi gi i. Th mc ny s ch cha cc th c nh dng theo tiu chun RFC-822 v i n lt chuyn ra ngoi Internet hoc mail gateway. RFC-822 compliant local message queue (local mail only) in th mc m MDaemon s dng cho cc th i gi cho cc ngi dng m chnh n qun l (local mail). Th mc ny ch cha cc th c nh dng theo tiu chun RFC-822 v i chuyn n hp th ti server.
Mailing list digests are stored here while waiting to be queued
in th mc m MDaemon s dng cha cc th Digest i chuyn i.

Mailing list digests are archived here
in th mc m MDaemon s dng cha Archive Digests.

Log transcript files are stored here
in th mc cha cc log ( logfile ghi li tin trnh gi nhn th v s kin vi h thng).

89
POP Check
Hnh 7.13 Perform a POP check before sending waiting mail
La chn cho php yu cu phi kim tra POP trc khi c php gi hoc nhn th Host name or IP address in tn ca host hoc a ch IP m mun kt ni n POP logon in logon hoc account POP password in mt khu unknown Mail
Hnh 7.14
What To Do With Mail For Unknown Local Users

Route message back to sender
La chn cho php cc th n server m khng xc nh c ngi nhn s gi ngc li cho ngi gi.
90
Send message to the Postmaster user
La chn cho php cc th m n server m khng xc nh c ngi nhn s gi cho Postmaster. Place message in bad message directory La chn cho php cc th m n server m khng xc nh c ngi nhn s chuyn n th mc th li (bad message) Advanced Options Enable advanced options La chn m cc thit lp cp cao hn cho cc th khng xc nh c ni nhn. Send the message to this host Cc th m khng xc nh c ngi nhn s c chuyn n server c in ti y. Use this address in SMTP envelope a ch ny s c in vo phn SMTP Mail From ca th khi gi ra Use this TCP port MDaemon s gi th qua cng TCP xc nh y ch khng phi l cng mc nh ca SMTP 7.1.3.S dng MDaemon qun l nhiu Domain (Secondary domains) Hosting Multiple Domain (ch c MDaemon Pro) l chc nng b xung thm chc nng cho Primary Domain. N c thit lp ti Secondary Domain cho php qun l nhiu domain name v a ch IP. c th cung cp multi-homing (cng mt a ch IP c th tng ng vi nhiu domains) MDaemon t ng xc nh a ch IP tng ng cc kt ni n v cc domain tng ng : V d : altn.com , IP = 1.1.1.1 user-1@altn.com, logon = user-1, POP password = ALTN arvelh.com - 2.2.2.2 user-2@arvelh.com, logon = user-2, POP password = ARVELH Nu cc kt ni ti a ch 1.1.1.1 th MDaemon s tr li l "altn.com". Nu kt ni ti 2.2.2.2 s s dng "arvelh.com" Nu user-1@altn.com kt ni ti 1.1.1.1 kim tra hp th, v s c cung cp user-1 l logon v "ALTN" l password. Nh nu user-2@arvelh.com kt ni ti 1.1.1.1 kim tra th th n kt ni sai server (m phi kt ni 2.2.2.2). Trong trng hp th phi in y a ch th (c phn domain) th MDeamon s chuyn sang chnh xc server v c quyn truy nhp vo hp th. V tng t vy bn c th dng mt a ch IP cho nhiu domain. V vi multi domain cho php khi to Account, Mailing list v thit lp an ton bn phi la chn domain no m n thuc v. Mt s phn nh DomainPOP th bn phi s dng primary domain truy nhp ly th. Khi to mail server vi nhiu domain th mt s b danh (alias) s c t ng to
MDaemon@secondarydomain.com = MDaemon@primarydomain.com stserv@secondarydomain.com = MDaemon@primarydomain.com listserver@secondarydomain.com = MDaemon@primarydomain.com listserv@secondarydomain.com = MDaemon@primarydomain.com Cc b danh s t ng
91
xa i khi secondary domain c xa i. Secondary Domain Editor c th s dng nhiu domain trn mt host, ta phi khai domain name v a ch IP tng ng. a ch IP c th l a ch IP ca host hoc mt a ch khc
Hnh 7.15
Secondary Domain List Ca s cha danh sch cc domain c qun l trn server. N bao gm ct Domain name, a ch IP ca domain, Bind (xc nh a ch IP c quyn cung cp dch v) v mt s ct hin th trng thi khc. Danh sch c th sp xp la chn tng dn hoc gim dn theo tng ct ch vi n gin l bm vo phn tn ca mi ct. Domain name in domain name m server c php qun l IP address in a ch IP tng ng vi domain c php qun l hoc sa thng s ca domain c sn. Bind sockets to this IP only Mun s dng secondory domain cung cp dich v trn ch a ch IP in ti "IP address" Add Thm vo danh sch "secondary domain" vi a ch IP tng ng Replace Chn mt domain trn danh sch v thay i v bn nt ny thay th Remove Xa la chn trn danh sch "secondary domain" Account and Old Mail Pruning Gm c ba la chn iu khin thit lp cho cc account Delete account within this domain if inactive for XX days (0=never) iu s ngy mun cc account thuc v domain ny m khng s dng s b xa. Vi gi tr "0" ngha l account s khng bao gi b xa khi khng s dng. Delete deleted IMAP messages in this domain older than XX days (0=never)
92
in s ngy cho php mt IMAP messages s b xa. Mt th nm trong hp th nhiu hn s ngy c in th s b xa. Gi tr "0" ngha l th s khng b xa d thi gian ca n trong hp th l bao lu Delete old messages from IMAP folder as well La chn ny tng ng vi la chn "Delete messages kept by users ..." nu la chn ny khng c chn th th trong hp th s khng b xa dng thi gian lu trong hp th l bao lu. Create calendar, contact, journal, task, and notes folder when adding domains La chn cho php bn mun th mc groupware s t ng to khi thm secondary domain (phn groupware s c trnh by trong mt gio trnh groupware) Adding a Secondary Domain Thm mt secondary domain vo danh sch domain (Domain List) 1. in Domain Name v IP Address. 2. Bm vo Bind To This IP (Nu bn mun bind vi a ch IP trn). 3. Bm Add. Editing a Secondary Domain Sa i secondary domain 1. Chn bn ghi trong "Domain List" m bn mun sa 2. Sa i nhng thay i mong mun trong cc hp iu khin xut hin 3. Bm nt Replace. Removing a Secondary Domain Xa mt secondary domain: 1. Chn bn ghi trong "Domain List" mun xa 2. Bm nt Remove. 7.1.7.S dng Account Editor to v sa account Account Editor cha cc thng s thit lp account cho MDaemon. N cho php to cc account mi v sa cc thng s ca cc account to. Khi to mt account mi, th ta c th s dng cc thng s mc nh (Thit lp ti New Account Default) hoc thit lp cc thng s ca account theo . Son account (Account Editor)
93
Hnh 7.16
Account Personal Information Full name in tn ca ngi s dng vo y. Tn khng cha k t ! hoc |. POP/IMAP Account Information Mailbox name Phn ny cha tn ca hp th ca ngi dng v n phi l duy nht (khng trng tn vi ngi dng khc) v n cng s dng lm account truy nhp POP/IMAP. Hp th phi duy nht v khng cha k t trng. Sau khi in tn ca hp th th chn trong hp danh sch bn cnh tn min tng ng m ngi dng s s dng. Primary Domain ca MDaemon s l gi tr mc nh. Tn ca Mailbox khng cha k t ! hoc |. Allow this account to be accessed with POP/IMAP mail clients La chn ny cho php account s dng th tc POP hoc IMAP nhn th. Nu khng chn th account ny s khng c php nhn th bng POP hoc IMAP. This account may share Outlook folders using MDaemon GroupWare La chn ny cho php account s dng chung th mc vi Microsoft Outlook khi s dng MDaemon GroupWare. La chn ny ch c tc dng khi MDaemon GroupWare c ci t. Account password in mt khu truy nhp ca account Notes/Comments on this Account S dng phn ny miu t chi tit v account. Aliases
94
Aliases Bm v nt ny son b danh cho ngi dng. ng thi y cng hin danh sch b danh m ta khai cho ngi dng. Hp th (Mailbox)
Mail Storage Information Message directory
Hnh 7.17
in th mc cha cc th gi n cho account Chuyn th n a ch khc (Forwarding)
Mail Forwarding Options
Hnh 7.18 Hnh 7.18

95
This account is currently forwarding mail La chn cho php bt chc nng t ng chuyn th n mt a ch hoc mt server khc (Forwarding) Forwarding address(es) in a ch m khi th gi n account s t ng chuyn n Retain a local copy of forwarded mail Nu t ng chuyn th qua a ch xc nh ti "Forwarding address(es)" th hp th ca account khng cn lu li. La chn ny cho php lu li mt bn hp th ca account. Advanced Forwarding Options Forward the message to this host in tn hoc a ch IP ca Email Server th s chuyn cc th ca account n y ch khng phi l a ch in ti "Forwarding Address". Use this address in SMTP envelope in a ch m khi th i s s dng nh l a ch SMTP "Mail From:". a ch ny s dng kt ni vi host m mun chuyn th n. Bnh thng l n s dng a ch ca ngi gi th. Use this TCP port MDaemon s gi th s dng cng TCP xc nh y ch khng qua cng mc nh (25) ca SMTP. Cc ty chn (Options)
Account Options
Hnh 7.19 Hnh 7.19
96
Hide account from calendar EVERYONE list, and VRFY results MDaemon t ng duy tr mt mailing list c tn l MasterEveryone@primary-domain.com bao gm tt c thnh vin c account thuc quyn MDaemon qun l. N cng duy tr cc mailing list cho tng domain gi l Everyone@users-domain.com m bao gm tt c thnh vin l cc account thuc mt domain . Theo mc nh MDaemon s xy dng mt MasterEveryone list bao gm tt c cc account ca tt c cc domain m n qun l. La chn ny cho php account s c lp v khng thuc cc list. Theo mc nh cc ngi dng trong danh sch ca list MasterEveryone ch c c (Read Only mode). Nu bn mun chuyn sang ch bnh thng (normal mode) th thay i trong file MDaemon.ini ti th mc \app\ ca MDaemon: MasterEveryoneListReadOnly=No (mc nh l Yes) Nu bn mun khng s dng Master Everyone list th thay i trong file MDaemon.ini: [Special] CreateMasterEveryoneList=No (mc nh l Yes) Store mail messages in an encrypted state La chn cho php MDaemon s cha cc th ca account di dng m ha. Cc th khng th c c trc tip nu trng thi ny v n l mt cng c rt tt bo v b mt. MDaemon s gii m khi chuyn th thng qua POP. Allow changes to account settings via email messages La chn cho php thay i thng s ca account thng qua mt th c dng c bit gi n. V d nh i mt khu hoc th mc cha th ... Account can modify the public address book La chn cho php account c th thm hoc xa cc bn ghi t WorldClient hoc danh sch LDAP. Thit lp quyn qun tr (Admin)
Hnh 7.20
Administrator Access
97
This account is a Global Administrator La chn ny cho php trao quyn qun tr cho ngi dng. Quyn ny bao gm: y quyn truy nhp vo cu hnh cho server, tt c cc account v domain thng qua Webadmin. Truy nhp v thit lp lch hot ng ca ngi dng. Truy nhp vo tt c MDaemon account ca cc domains m MDaemon qun l. C kh nng gi vo tt c cc mailing list thm ch c khi list thit lp ch c. C kh nng gi vo tt c cc mailing list thm ch khng phi l thnh vin ca list. Ngi dng s hon ton c quyn truy nhp vo cc file v cc thit lp ca MDaemon. This account is a Domain Administrator La chn ny cho php ngi dng c quyn qun tr domain. Quyn ca n tng t nh Global Administrator nh ch c phm vi vi domain m n qun l. Gii hn dung lng (Quotas)
Hnh 7.21 Quota Options This account must observe these quota settings y bn thit lp s lng ln nht ca th c php nhn, dung lng ca hp th (kilobytes) ca account (Bao gm c cc file nh km trong th mc Account Directory\File ). Nu mt th gi cho account m n y hoc s lng th vt qu kh nng th th s c chuyn n postmaster cnh bo. Account and Old Mail Pruning Cc iu phn ny c thit lp iu kin xa account khi khng hot ng. Bn cng c th thit lp thi gian xa th lu trong hp th qu lu. Hng ngy vo na m MDaemon s kim tra v xa th c thi gian lu hn thi gian c thit lp. Nu khng thit lp th n s s dng cc thit lp mc nh thit lp ti phn
98
Primary Domain Configuration v Secondary DomainsUse defaults for this domain La chn cho php bn s dng gi tr mc nh ti Primary Domain Configuration hoc Secondary Domains ty thuc vo domain ca account. Automatically delete account if inactive for XX days (0 = never) Thit lp s lng ngy m bn mun, nu account khng hot ng n s b xa. Gi tr "0 c ngha l account s khng bao gi b xa d n khng hot ng bao lu. Delete messages older than XX days (0 = never) Thit lp s ngy m th c th lu gi trong hp th ca account, nu vt qu n s b xa t ng bi MDaemon. Gi tr 0 c ngha l th s khng bao gii b xa d nm trong hp th bao lu. Delete deleted IMAP messages older than XX days (0 = never) Thit lp s ngy m bn cho php IMAP message c nh du xa c tn ti trong trong hp th ca ngi dng. Khi vt qu th n s thc s c xa. Gi tr 0 ngha l n s khng bao gi b xa d thi gian bao lu. Delete old messages from IMAP folders as well La chn cho php thit lp trong Delete messages older than c hiu lc vi c cc th mc IMAP. Nu la chn ny khng c chn th th trong th mc IMAP s khng b xa d thi gian l bao lu. Hn ch gi nhn th (Restrictions)
Hnh 7.22 Tnh nng ny cho php hn ch s dung account, nh hn ch ch cho php gi n hoc nhn v vi cc account thuc MDaemon qun l (local-domain). Hn ch cc a ch bn ngoi (nolocal-domain) m n c php gi n v nhn v. Inbound Mail Restriction This account cant receive messages from the outside world La chn ny khng cho php nhn th t ngi dng khng phi do MDaemon qun l (non-local domains). except if from one of these addresses Cc a ch trong danh sch ny th c php gi th n account. c php s dng
99
k t i din. Do nu *@altn.com l cho php tt c th t domain altn.com th c php gi n account. New address in a ch m bn mun c php gi n acccount. Add Sau khi in a ch vo "New address" bm nt ny nhp vo danh sch "exceptions list". Remove Chn a ch m bn mun xa khi danh sch v bm nt ny xa. Messages from unauthorized sources should be La chn gii php vi cc th n t cc a ch khng c php. N c cc la chn sau : Refused T chi bi MDaemon. Returned to sender th s c gi tr li ngi gi. Sent to postmaster th chp nhn nh n s c gi ti postmaster. Outbound Mail Restriction This account cant receive messages to the outside world La chn ny cho php thit lp khng cho php gi n cc domain m DMaemon khng qun l. except if from one of these addresses Cc a ch thit lp y l cc a ch m account c php gi n. Cc k t thay th c php s dng. Do d nu bn in *@altn.com th tt c cc a ch t domain altn.com th account c php gi n. New address in a ch m bn mun account c php gi n. Add Sau khi in a ch ti "New address" bm nt ny in vo danh sch. Remove La chn mt a ch t danh sch v bm nt ny loi b. Messages to unauthorized sources should be Chn gii php khi account gi ti mt a ch khng c php. N c cc la chn sau: Refused th ti cc a ch khng c php MDaemon s t chi. Returned to sender th s gi li cho ngi gi. Sent to postmaster th s c chp nh chuyn cho postmaster. Xem th bng Web (Web)
100
Hnh 7.23 Web-based Mail Access Account can access email via WorldClient La chn cho php account c th truy nhp vo bng WorldClient Server, account c th duyt th bng web browser. Web-based Remote Configuration Permissions Account can modify its own settings via the WebAdmin La chn cho php ngi dng c thay i cc thng s ca chnh n qua WebAdmin. N s c php thay i cc thng s la chn sau Edit real name - La chn cho php ngi dng c th thay i tn. Edit password - La chn cho php ngi dng c th thay i mt khu. Edit mail directory location - La chn cho php thay i th mc ca hp th. Ch ! Bn nn cn thn vi la chn ny. Cho php ngi dng thay i th mc c ngha l bn cho php ngi dng truy nhp n tt c cc th mc trn h thng ca bn. Edit forwarding address - La chn ny cho php ngi dng c quyn thay thit lp a ch m n mun chuyn th ca hp th n (forword). Edit advanced forwarding - La chn cho php ngi dng c th thay i phn m rng Forward (Advanced Forwarding Options) Edit encrypt mail setting - La chn cho php ngi dng c thit lp m ha th hay khng. Edit IMAP rules (PRO version only) - La chn cho php thay i cc cc quy tc cho cc IMAP Mail. c im ny ch c MDaemon PRO. Edit EVERYONE list setting - La chn ny cho php ngi dng c th thit lp mailing list cho ngi dng thuc domain (MDaemons EVERYONE Mailing List) Edit quota settings - La chn cho php account c th thay i cc thit lp hn ch (quota).
101
Edit MultiPOP settings - La chn cho php ngi dng c th s dng hoc khng ly th qua MultiPOP. La chn ny khng cho quyn ngi dng c kh nng to, xa hoc sa MultiPOP entries. MultiPOP entries phi to bng ngi qun tr v s dng giao din MDaemon. Edit autoresponder settings - La chn cho php ngi dng c th thm, sa hoc xa AutoResponders cho account ca mnh. Edit allow changes via email - La chn nu bn mun ngi dng c th thay i cc thit lp Account bng cch gi cc th c cu trc c bit. Apply defaults Bm nt ny cho php tr v gi tr mc nh cho cc la chn trn. T ng tr li (Auto Responder)
Hnh 7.24 Auto Response Event Enable an auto responder for this account La chn cho php kch hot s dng auto-responder cho account. Use this auto response script in ng dn v response file (*.RSP) m s dng x l v gi cho ngi gi n. Do not send auto response if message is from one of these addresses Danh sch cc a ch m khng s dng Auto-Responder. Del La chn cc a ch trong danh sch v bm nt ny xa khi danh sch. New excluded addresswildcards okay in a ch m bn mun in vo danh sch khng thc hin Auto-Reponder. Add Sau khi in a ch vo New Excluded Address, bm nt ny thm a ch vo danh sch. Run a Program Run this program in ng dn v file chng trnh chy s chy khi c mt th gi n. Phi cn thn
102
chc chn rng qu trnh chy s kt thc bnh thng v khng nh hng n h thng. Pass message to process La chn cho php chng trnh chy tai Run This Process s khng kch hot chy khi m n vn ang chy. Advanced Options Add sender to this mailing list Chn mailing list m ngi gi n s t ng l thnh vin ca mailing list. N rt hu dng cho vic t ng to tham gia list. Remove sender from this mailing list Chn mailing list m ngi gi n s t ng loi ra khi list. Thit lp cc quy tc nhn th bng IMAP (IMAP Mail Rules)
Hnh 7.25 Vi MDaemon, IMAP user c th nh hng t ng gi vo cc th mc trn server. Ging nh Content Filters, MDaemon s kim tra phn u (header) ca tng th v so snh vi cc quy tc c thit lp. Khi mt th cho account ph hp vi mt quy tc, MDaemon s chuyn v th mc c thit lp. iu khin ny rt c hiu qu cho vic phn loi th. Existing IMAP Mail Rules Hin danh sch cc quy tc to cho account. Cc quy tc c x l theo th t cho n khi tm c quy tc ph hp. Do khi th ph hp vi mt quy tc th n s c chuyn n th mc tng ng vi xc inh ca quy tc v b qua cc quy tc pha sau. S dng nt Up v Down chuyn cc quy tc c chuyn ln hoc xung trong danh sch. Remove Chn cc quy tc trong danh sch v bm nt ny xa quy tc khi danh sch. Clear all Bm nt ny xa tt c cc quy tc.
103
Up La chn quy tc v bm nt ny chuyn quy tc ln trn ca danh sch v n c x l trc. Down La chn quy tc v bm nt ny chuyn quy tc xung thp hn ca danh sch. New IMAP Mail Rule Cc thit lp y dng to mt quy tc mi cho ngi dng. If the [message header] header Chn mt phn header ca th. MDaemon s tm kim trong phn ny ca tt c cc th chuyn n account theo ni dung in ti This text bn di. V ty theo kiu so snh n s quyt nh th s chuyn n th mc no c chn di danh sch "Then moved to this folder". Comparison drop-down list box L cch so snh s c s dng khi nhn c th n s ly phn u ca th v s sanh vi cc quy tc IMAP thit lp. MDaemon s tm phn ni dung trong phn This text v sau x l da trn phn iu khin so snh nh phi chnh xc, ch cn cha ni dung, bt u vi ... This text in ni dung m bn dng so snh ca quy tc vo y v MDaemon s tm phn u ca th xc nh. Then move message to this folder Sau khi in cc thng s cho quy tc. y bn chn th mc m bn mun khi cc th ph hp s c chuyn n. New folder Bm nt ny to mt th mc mi. S dng MultiPOP
104
Hnh 7.26 Tnh nng MultiPOP (trong phn Account Editor) cho php bn to kt ni POP host/user/password ly th t nhiu ngun. N rt c ch cho ngi s dng m c nhiu account th in t trn nhiu server nh mun ly v mt hp th trung. Trc khi ly th v hp th MultiPOP chuyn v local queue do n cng c x l nh cc bc th bnh thng khc, cng s dng autoresponders v Content filters x l. MultiPOP Mail Collection Enable MultiPOP mail collection for this account La chn kch hot hot ng ca MultiPOP cho account. Server in POP3 server m bn mun ly th v. Bn c th xc nh cng ly th v m khng phi cng mc nh cho POP (110), bn in gi tr cng v phn tn ca server v cch nhau bi du hai chm ":". V d: s dng mail.altn.com nh l POP3 server v s dng cng 523 th bn s phi in nh sau mail.altn.com:523. Logon in POP3 USER hoc LOGON truy nhp vo hp th vi server xc nh trn. Password in mt khu POP3 hoc APOP. Use APOP (password field contains shared secret) La chn ny cho php MultiPOP s dng APOP xc thc khi ly th v. Leave a copy of message on POP server La chn ny cho php khi ly th t cc POP server v th cc bc th trn trn POP server s khng b xa. N rt hu dng cho vic s dng li th. Delete messages once [xx] or more have accumulated (0 = never) S lng th m MultiPOP s li trn remote POP server. Nu th nhiu hn xc nh th n s b xa sau khi ly v. Gi tr 0 ngha l khng mun xa th d s lng l bao nhiu. Dont download messages larger than [XX] KB (0 = no limit) in gi tr ln gii hn ca th s c ly v, ln tnh bng Kilobyte. Remove La chn bn ghi MultiPOP trong danh sch v bm nt ny xa. Enable/disable Nt ny cho php s dng bn ghi MultiPOP hoc khng dng ly th. Add Sau khi thit lp cc gi tr bm nt ny thm bn ghi vo danh sch MultiPOP. Replace La chn mt bn ghi trong danh sch v sa theo v bm nt ny thay th. Th mc dng chung (Shared Folders)
105
Hnh 7.27 IMAP Folders Hin tt c cc th mc IMAP v c th s dng chia s vi ngi dng cng h thng MDaemon. Khi account mi c to th y s trng cho n khi bn s dng iu khin Folder name v Create controls (trn iu khin IMAP Mail Rules ) thm cc th mc. Remove Chn th mc dng chung IMAP trong danh sch v bm nt ny xa th mc. New IMAP Folder Folder name in tn ca th mc m bn mun thm vo danh sch. Nu bn mun to mt th mc con trong mt th mc trong danh sch th in th mc v k t phn bit sau l th mc con. V d : nu k t phn bit l / v mun to th mc con trong th mc My Folder th in th mc con trong hp s l My Folder/My New Folder. Create Sau khi in tn th mc v bm nt ny to th mc. Replace Nu bn mun sa mt th mc dng chung th chn th mc cn sa trong danh sch v sa theo v bm nt ny thay i. Edit access control list Chn th mc v bm vo nt ny m phn to Access Control List cho th mc. S dng Access Control List gn cc quyn s dng cho ngi s dng. Access Control List
106
Hnh 7.28 Access Rights Phn iu khin ny cho php gn quyn truy nhp cc th mc chia x chung cho MDaemon account v thit lp quyn cho tng ngi dng. Vo AccountAccount Manager...User AccountShared Folder bm p vo th mc mun thit lp v Edit access control list s m ra cho php bn thit lp quyn truy nhp vo th mc ngi dng Email address La chn account m bn mun gn quyn truy nhp cho th mc chia x (shared folder). Add Sau khi chn a ch th t danh sch v cc quyn mun gn cho account, bm nt ny thc hin in vo danh sch Replace Sa cc bn ghi ca Access Rights, chn mt bn ghi v thay i n sau bm nt ny thc hin thay i. Remove Chn mt bn ghi v bm nt ny xa khi danh sch. Import Vi tnh nng ny bn c th thm thnh vin ca mt mailing list ang tn ti vo danh sch ngi dng c quyn truy nhp list. Chn quyn m bn mun gn cho ngi dng, bm import v bm p v danh sch mong mun. Access Rights Chn quyn m bn mun gn cho ngi dng. Sau y l cc quyn gn cho ngi dng: Lookup (l) ngi dng xem c th mc IMAP. Read (r) ngi dng m c cc th mc v xem ni dung ca th mc. Write (w) ngi dng thay i c cc th trong th mc. Insert (i) ngi dng thm th v chuyn th vo th mc. Create (c) ngi dng to c cc th mc con trong th mc. Delete (d) ngi dng xa c th trong th mc. Set Seen Flag (s) ngi dng thay i c trng thi c/khng c
107
ca th trong th mc. Administer (a) ngi dng c th thit lp qun tr cho th mc. Post (p) ngi dng c th gi th trc tip p th mc (nu th mc cho php) Help Bm vo nt Help hin danh sch cc quyn truy nhp v nh ngha ca n. 7.1.5.Qun l v sa MDaemon Account Phn ny gm cc cch thc m MDaemon qun l c s d liu Account. Vo AccountsAccount database... hoc bm Alt+F vo bng qun l account: kiu ODBC, LDAP hoc USERLIST.DAT. Vo AccountsAccount manager... hoc bm Alt+M vo phn to, sa v xa account. Vo AccountsNew Accounts defaults... hoc bm Alt+F10 to cc thng s mc nh to mt ngi dng mi. Kiu d liu Account (Account Database Options)
Hnh 7.29 Store account data in USERLIST.DAT disk file La chn ny cho php MDaemon s dng file USERLIST.DAT lu tr d liu account. La chn ny l mc nh, do file qun l nm ngay ti server nn tc v vic qun l b nh c hiu qu hn. Store account data in LDAP accessible store La chn ny cho php MDaemon s dng c s d liu v ngi dng ti LDAP. Bn phi s dng la chn ny nu mun s dng nhiu MDaemon Server ti cc a im khc nhau cng s dng trung c s d liu ti LDAP Server. LDAP Server cho php tr li cc truy vn mt cch nhanh chng v hiu qu nhng vic cp nhp v thm d liu mi hi chm. Configure Khi s dng d liu LDAP account. Th bm vo nt ny cho php m ca s cho php cu hnh cho LDAP server.
108
Store account data in an ODBC accessible store La chn nu bn mun s dng c s d liu ODBC qun l c s d liu MDaemon Account. N cho php s dng c s d liu SQL hoc Microsoft Access do cho php c th s dng c s d liu ny thit lp qun l nhn s, qun l khch hng ... Configure Khi chn ODBC qun l d liu account th bm vo nt ny chn thit lp cho ODBC ODBC Selector Wizard
Hnh 7.30 S dng wizard la chn hoc cu hnh cho c s d liu ODBC cho MDaemon qun l account. vo thit lp bm Alt+F hoc AccountsAcount database... ca MDaemon sau chn "Store account data in an ODBC accesible store" cui cng l bm "Configure" First, select data source L danh sch ca la chn loi ODBC s dng lu tr d liu. La chn mt kiu m bn mun s dng lu tr d liu v account Some data sources require a logon and password in thng tin v logon v password m bn mun s dng khi mun truy nhp ly thng tin New DSN Nu m bn khng chn c c loi c s d liu ph hp th cn to mt loi mi Migrating Your Account Database to an ODBC Accessible Store Chuyn c s d liu t h thng sang c s d liu ODBC 1.Vo AccountAccount Database... chn "Store account data in an ODBC accessible store" v bm tip vo "Configure" 2.Chn loi c s d liu (data soure) qun l d liu account. Nu khng c loi no ph hp bm vo New DNS to mt loi mi 3.Bm Next 4.Nu c loi d liu ph hp vi MDaemon th chuyn sang bc 7 cn nu khng tip tc bm vo "Run a script to create the necesary tables ..."
109
Hnh 7.31 5.Chn ng dn n script file m bn mun to d liu ng dng. Trong th mc \MDaemon\app cha mt s script cho cc c s d liu ng dng thng dng nht 6.Bm "Run script and create database table now". V bm OK sau bm Close
Hnh 7.32 7.Sau bm Finish sau bm OK ng hp Account Option 8.C s d liu v account ca h thng s chuyn sang d liu ca ODBC v sau ng MDaemon. Bm OK v restart li MDaemon bt u s dng ODBC Creating a New System Data Source To c s d liu ODBC mi 1.T hp Account Database bm vo nt "Store account data in an ODBC accesible store" v sau bm vo Configure 2.Bm "New DS" m hp Select Data Source chuyn sang "Machine Data Source"
110
Hnh 7.33 3.Bm vo New m hp Create New Data Source 4. Chn System Data Source v bm Next
Hnh 7.34 5.Chn database driver chn kiu c s d liu mun thit lp v bm vo nt Next
Hnh 7.35 6.Bm vo Finish hin ca s chn driver
Hnh 7.36 7. in tn ca d liu m bn mun t ( Data Source Name) v cc thng tin c lin quan 8.Bm "OK" ng ca s chn driver
111
9.Bm "OK" ng ca s "Select Data Source" Qun l account (Account Manager)
Hnh 7.37 Account Manager l cch tt nht qun l account cho php tm, thm, xa v sa i account, (bm vo AccountsAccount Manager hoc Alt+M m ca s Account Manager). Ca s cho php truy nhp vo xem thng tin ca account v c th danh sch sp xp theo domain, tn hoc ngy thng ... Account List trn ca danh sch account (Account List) bn c th thy hai thng s thng k ca danh sch. S u tin l tng s MDaemon account hin c trn h thng. S th hai l s tng account hin ang hin trn danh sch (Account List). N c th l tt c cc account nu chn "All Domains" trong phn "Show Only Accounts From This Domain" hoc l s account ca mt domain xc nh nu bn ch chn mt domain xc nh. Theo mc nh ch c 500 account xut hin ti mt thi im trong danh sch. Nu bn mun xem tip cc account bm vo nt Show More Accounts hin tip 500 account k tip. Nu mun hin hn 500 account ti mt thi im th bn vo file MDaemon.ini v thay i gi tr ca MaxAccountManagerEntries=500 thnh bao nhiu account m bn mun xut hin ti mt thi im. Show only accounts from this domain Chn All Domains t ca hp drop-down hin tt c danh sch MDaemon account. Hoc chn mt domain no hin ch account thuc v domain . New Bm nt ny m Account Editor to account mi. Edit La chn account t danh sch "Account List" v sau bm nt ny m Account editor sa account. Delete
112
La chn account t danh sch "Account List" v bm nt ny xa n. Bn cng s c yu cu khng nh xa account trc khi MDaemon thc s xa. Show more accounts Danh sch account (account list) s ch hin 500 accounts ti mt thi im. Nu nhiu hn 500 accounts cho domain th bn phi bm v nt ny hin 500 account k tip. Top Bm nt ny nhanh chng chuyn v u ca danh sch Account List. Import Bm nt ny m ca s t bn c th chn text file nhp account vo. New account defaults Bm vo nt ny vo ca s thit lp cc gi tr mc nh cho cc account mi (New Account Defaults) New Account Defaults Vo menu chn AccountsNew Account Defaults thit lp cc gi tr mc nh khi to account mi.
113
BI 8: CI T V QUN TR MICROSOF EXCHANGE SERVER 2007
8.1 Tng quan v Exchange Server 2007

8.1.1 ii thiu v change Server 2007 Microsoft Exchange Server tr thnh mt trong nhng sn phm h tr lm vic cng tc hng u trn th gii k t thng 04/1996 cho n nay. Exchange Server tr thnh ng dng server c bn chy nht trong lch s ca Microsoft. Trong mi phin bn mi, Microsoft Exchange Server li c nhng ci tin rt ng k. n thi im hin ti, Microsoft Exchange Server 2007 l phin bn vi nhiu tnh nng u vit mang li nhng hiu qu to ln cho ngi dng. 8.1.2 Cc phin bn ca change Server 2007
Microsoft cung cp 2 phin bn cho Exchange Server 2007 l Exchange Server 2007 Standard Edition v Exchange Server 2007 Enterprise Edition. Exchange Server 2007 Standard Edition Phin bn Standard ph hp nhu cu x l h thng th in t ca nhng cng ty va v nh. Phin bn ny c nhng gii hn nh sau: - Mi server ch h tr 5 nhm lu tr, mi nhm lu tr ch cho php ti a 5 b c s d liu. - H tr chc nng Local Continuous Replication nhng khng h tr Single Copy Clusters v Cluster Continuous Replication. ngha ca cc chc nng s lm r trong phn sau. Exchange Server 2007 Enterprise Edition Phin bn enterprise nhm p ng nhu cu qun l ca cc doanh nghip ln. Exchange Server 2007 Enterprise bao gm tt c cc tnh nng ca phin bn Standard cng thm cc chc nng sau: - H tr ti 50 nhm lu tr trn mt server. Mi nhm lu tr c th cha ti 50 databases. - H tr Single Copy Clusters v Cluster Continuous Replications. 8.1.3 Tnh nng mi * Bo v: anti-spam, antivirus, tun th quy nh, kh nng clustering vi data replication, nng cao kh nng bo mt v m ha thng tin * Nng cao kh nng truy cp thng tin cho ngi dng vn phng: ci tin lch lm vic, unified messaging, ci tin truy cp mail qua thit b di ng v thng qua web access * Nng cao kinh nghim qun tr: x l trn nn tng 64-bit v cho php m rng, h tr cu hnh c bng command-line shell v giao din ha, ci tin vic pht trin ng dng, phn quyn v nh tuyn n gin.
114
* Exchange Management Shell: y l tp lnh cho php cu hnh h thng exchange qua dng lnh (command-line shell) v ngn ng kch bn (scripting language) dnh cho nhng ngi qun tr h thng (da trn Windows PowerShell). Ngi dng Shell c th cu hnh thng qua giao din chun ca Exchange Server nhng ng thi c th lm thm cc tc v b sung bng cc dng lnh. Nhng tc v quan trng s c to thnh kch bn sn (scripts) v sau c lu tr, chia s v ti s dng. Exchange Management Shell c trn 375 dng lnh gip qun l cc tnh nng ca Microsoft Exchange Server 2007 * Tnh nng "Unified Messaging" cho php ngi dng nhn voice mail, e-mail, v fax t hp th ca h, v cho php h truy cp hp th t in thoi di ng hay cc thit b wireless. Bn c th dng lnh bng li ni nghe th in t thng qua in thoi (v tt nhin c th gi cc tin nhn ngn, v d "I ll be late") * Tng cng kh nng lu tr CSDL ti a ln n 16TB cho mt database. * Tng cng s lng nhm lu tr ti a v mail database trn tng server: cho php 5 nhm lu tr trong phin bn Standard Edition (Exchange Server 2003 Standard ch cho php 1 nhm), v ti 50 nhm trong phin bn Enterprise (Exchange Server 2003 Enterprise ch cho php 4 nhm v 20 databases). 8.1.4Yu cu phn cng: a. Processor: Vi x l Xeon hoc Pentium 4 64-bit. Vi x l AMD Opteron hoc Athalon 64-bit. b. Memory: Ti thiu: 1 GB Ram Khuyn co: 2 Gb Ram cho server v 7Mb trn tng Mailbox c. Disk space: Khong 1.2 Gb trng ci t Exchange server 2007. Cn khong 500 Mb b nh trng cho Unified Messaging (UM) mi khi c ci t. 200 Mb trng s dng cho h thng. d. File format: Tt c h thng, storage Exchange, storage group file, database files, Exchange files u c t trong disk c format theo NTFS. 8.1.5 Yu cu phn mm: a. Cc phn mm cn thit: Microsoft .NET Framework Version 2.0 Micrsoft Management Console (MMC) 3.0 Windows PowerShell V1.0 Hotfix for Windows x64 (KB904639) b, Yu cu h thng Active Directory: OS phi l Microsoft windows server 2003 hay windows server 2008.S dng exchange 32bit cho h iu hnh 32 bit v exchange 64bit cho h iu hnh 64bit My nng cp thnh Domain controllers.
115
M rng Active Directory schema cho Exchange 2007 Bt chc nng Global catalog cho server. Upgrade Domain functional level v Forest functional level.
8.2 Ci t v qun tr Exchnage Server 2003

8.2.1 Ci t Exchange Server 2007 Sp3 ci t chng trnh Exchange Server i hi chng ta phi qua cc bc sau y: - Ci t Microsoft .NET Framework v2.0 Sp1 - Ci t MMC v3.0 - Ci t Windows PowerShell - Ci t Microsoft Windows Istaller 4.5(i vi Exchange 2007 Sp3) - My ci t Exchange phi l my chy h iu hnh Server ( y chng ta s chn Windows Server 2003)v Join vo Domain. Ngha l my ci Exchange khng c ci trc tip ln my DC Server v nh th cc dch v ca Exchange s b xung t vi cch dch v ca DC Server nn s chy khng th n nh. - Upgrade DC Server ln Domain Functional Level - My ci t Enterprise Root CA hoc thng qua mt my CA Server no v xin chng thc CA t my ny - ci t ASP.NET (IIS) v xin Certificate t CA Server chy SSL cho Default Website - H thng mng phi c DNS Server cc domain phn gii c vi nhau - khai bo MX Record Sau khi tun th theo trnh t cc qui trnh trn ta tin hnh ci t Exchange Server. Trong bi chng ta s ng dng Exchange Server 2007 Sp3 Chn Install Microsoft Exchange
116
Chn ty chn Typical Exchange Server Installation
t tn cho Exchange Server ti ca s Exchange Organization
117
Chn Next
Ti y Exchnage Server s tin hnh kim tra h thng ca bn c hon tt cc qu trnh m ti nu trn hay cha. Qu trnh ci t din ra kh lu c th mt n khong 40 pht.
118
Sau khi ci t xong cc bn phi Restart li my cp nht li cc Services
119
8.2.2 Ci t v qun l mailbox Trong phn ny chng ta s lm quen vi cng vic to User, Group v tin hnh gi Mail cho nhau gia cc User. Ti mn hnh Exchange Management Console nhp chn vo Recipient Configuration to mt User mi bn click phi vo vng trng chn New Mailbox...
120
Trong ny c 4 la chn cho bn tuy nhin trong phn ny ta ch ch n la chn u tin l Mailbox m thi click chn Mailbox v chn Next
Chn New user v click Next
121
Gi s ti to mt user mi l student1 vi password l 123456a@
Gi nguyn gi tr mc nh ti mn hnh Mailbox Settings v chn Next
122
Hon tt qu trnh to User
Tr li mn hnh Recipient Configuration bn s thy xut hin thm mt user mi l student1
123
im hay ca Exchange l khi to User Mailbox xong n s to mt Account tng ng cho User ny trong Active Directory Users and Computers. V vy vi cng mt ti khon Mailbox ta va c th Check mail va c th Login v Domain
Tuy nhin vi nhng user c to t trc th Exchange khng t thm vo khi ci t m ta phi Add vo sau . Gi s ti to thm mt user l student2 trong ca s Active Directory Users and Computers
124
Tr li mn hnh Recipient Configuration ta thy user student2 cha c Add vo
V vy ta tin hnh to Mailbox mi cho user ny. Tuy nhin o user ny tn ti nn ti mn hnh User Type bn chn mc Exiting user v click chn Browse...
125
Click chn student2
126
Tng t bn to thm 2 user na l student3 v student4 nh trong hnh
Ta ch rng khi to user xong Exchange s t gn cho h mt a ch Mail ng vi user Account nh vy cc user ny va c th Login vo Domain va c th gi mail cho ngi ngoi bng chnh a ch Email ny. Tuy nhin trong thc t c mt s user m ta khng mun h s dng email ni b ny mc d vn cho h user Account Login vo Domain lm vic chng hn nh nhn vin tp s. Chnh v th ta khng to cho cc user ny mt Mailbox nh trn m to cho h mt Mailbox c quyn Login vo Domain nhng khng c a ch mail ni b m ly mt a ch mail t bn ngoi ca user cung cp Bn nhp phi vo vng trng chn New Mail User
127
Trong v d ti s to mt Mail User l thuviec1 vi password l 123456a@
Trong ca s Mail setting bn add a ch mail ca user ny cung cp vo External email address
128
Mn hnh sau khi hon tt
By gi ta s tin hnh to cc Mail Contact cha thng tin v ca khch hng chng ta nhm tin trong vic lin lc. Tt nhin cc Mail Contact ny ch c thng tin c bn m thi v khng th dng Account ny Login vo Domain c Nhp phi vo vng trng chn New Mail Contact
129
Ti mn hnh Contact Information bn nhp thng tin khch hng ca bn vo bn di
Nh vy n y c bn ta hon thnh xong cng on to cc User Account by gi ta tin hnh Login vo tng User Check mail cng nh gi th qua li cho nhau Tuy nhin trong phn ny chng ta khng dng Outlook Express na m dng Microsoft Office Outlook (MOO) xem ht cc tnh nng mnh m ca MOO nh th no Ti my Client ti Login vo gccom1 v bt MOO ln s thy MOO rt thng minh rng n t tm thy Exchange Server v gn lun a ch Email ca chnh user chng ta vo
130
Tuy nhin trong sut qu trnh hc Exchange ny nu c phi test Email ca mt User no th phi Login vo chnh User th qu bt tin nn ti s hng dn bn to Mail Profiles ngay trn my Exchange Server ca mnh test cho nhanh. Bn vo Control Panel chn Mail
Click chn Prompt for a profile to be used v chn Add thm cc Profiles ca tng User vo
131
Cu hnh cc Profile cho student1
Tng t to Profile cho cc Mailbox cn li
132
By gi khi bt mn hnh MOO ln MOO s dng li ti mn hnh Choose Profile bn chn Login vo cc Mailbox tng ng.
By gi ti Login vo Mailbox student1
133
V gi mt Mail mi cho gccom2. Tuy nhin do MOO c thit k thng minh hn OE nhiu nn ti mc To bn khng cn phi nhp Email ca gccom2 m ch cn nhp vo nt To
Mi Account m chng ta to ban u u c lit k trong Global Address List ny
Sau ti Login vo student2 v nhn thy nhn c Email t student1 hon chnh
134
2.3 Ci t v qun l Group Trong phn trc chng ta tm hiu v cch thc to cc Mailbox cng nh gi mail qua li gia cc User ny. Tuy nhin trn thc t i khi vi cng mt ni dung th nhng ta li c nhu cu gi n hng chc thm ch hng trm nhn vin trong cng ty chng ta V vy vic Click chn tng User Add vo To hoc gi th t tng Email cho tng User th qu mt cng chnh v th chng ta phi to cc Group cha cc Mailbox ny cng tng t nh vic ta to Group trong Active Directory user and computers vy. Nhng thc s trong Exchange c g khc bit chng ta cng tm hiu sau y. Cng ti Recipient Configuration bn nhp phi vng trng chn New Distribution Group
Vi Distribution Group chng ta c 2 dng l Distribution Group v Sercurity Group nhng trong bi ny chng ta ch tm hiu v Distribution Group m thi, gi s ta to 2 Group mang tn Hanh chinh v Tai vu chng hn.
135
Mn hnh sau khi to cc Distribution Group thnh cng
Tip tc double click vo Group Hanh chinh chn Tab Members v Add cc Mailbox student1 v student2 vo.
Tng t cho Group Tai vu bn Add cc Mailbox student3 v student4 vo
136
By gi ti MOO ti Logon vo student1 v to mt mail mi
n y thay v student1 c nhu cu gi email cho student3 & student4 th ch cn chn Group Tai vu m thi
137
Ti son mt mail vi Subject l Mail 1 gi cho Group Tai vu
Logon vo student3 v student4 thy nhn mail tt
138
Ti liu tham kho: www.microsoft.com/exchange Microsoft corp, Exchange Server 2007 Adminitrator Guide, 2007 giao trinh dao tao xay dung va quan tri web portal Gio trnh Thit lp v qun tr h thng th in t ca TT T truyn s liu KV1
139

Decuong Web Mail v2

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Decuong Web Mail v2

Uploaded by

Copyright:

Available Formats

B mn mng my tnh v truyn thng

TRNG I HC S PHM K THUT HNG YN KHOA CNG NGH THNG TIN

THIT LP XY DNG V QUN TR H THNG MAIL SERVER V WEBSERVER

HNG YN, THNG 2-1011

B mn mng my tnh v truyn thng

CHNG 1: GII THIU V INTERNET

1.1. Tng quan v Internet v lch s pht trin ca Internet

Hnh 1.1: Tng quan v Internet

B mn mng my tnh v truyn thng

1.1.2. Lch s pht trin ca Internet

1.2 T chc ca Internet

B mn mng my tnh v truyn thng

B mn mng my tnh v truyn thng

B mn mng my tnh v truyn thng

B mn mng my tnh v truyn thng

B mn mng my tnh v truyn thng

Chng 2: Tng quan v mt h thng Web

2.1 Gii thiu

2.2 M hnh h thng Web ni chung

B mn mng my tnh v truyn thng

2.3. Nguyn tc hot ng

Server answer Server answer

Clien HTM HTM

B mn mng my tnh v truyn thng

B mn mng my tnh v truyn thng

B mn mng my tnh v truyn thng

Bi 3. Cc phng php cp nht thng tin ln web

3.1 FTP di dng dng lnh

B mn mng my tnh v truyn thng

3.2 FTP di dng truyn file thng qua cc chng trnh

B mn mng my tnh v truyn thng

B mn mng my tnh v truyn thng

BI 4. CC L HNG BO MT WEB THNG GP

4.1 L HNG BO MT CA NG DNG WEB

B mn mng my tnh v truyn thng

B mn mng my tnh v truyn thng

4.2 CC L HNG BO MT WEB THNG GP

a, Mt khu a vo t ng hon thnh

b, ng lin kt b hng - Broken Link

B mn mng my tnh v truyn thng

c, Windows Terminal Service chy trn Webserver

d, a ch th in t(email) c tm thy trn trang Web

B mn mng my tnh v truyn thng

a, FTP ng nhp di quyn nc danh

b, Dch v telnet c bt (Telnet service running)

c, Cc thng bo li ng dng(Application Error Message)

d, Nhng th mc c th nhy cm b l - Possible sensitive directories

B mn mng my tnh v truyn thng

f, Chng nhn ngi dng c gi i di dng vn bn d hiu

g, Tm thy danh sch cc th mc

B mn mng my tnh v truyn thng

h, WebDAV(Web-based Distributed Authoring and Versioning) c cho php

B mn mng my tnh v truyn thng

a, Tim cu lnh SQL (SQL Injection)

B mn mng my tnh v truyn thng

b, Kch bn lin trang XSS(Cross Site Scripting)

B mn mng my tnh v truyn thng

i vi ngi dng phi cn thn ch trc khi bm vo cc

B mn mng my tnh v truyn thng

d, Th mc giao nhau (Directory Traversal)

e, H qun tr c s d liu MySQL Enterprise Server v.5.0.52 cha nhiu l hng

B mn mng my tnh v truyn thng

g, Vng chuyn i DNS(DNS Zone Transfer)

B mn mng my tnh v truyn thng