Relay Exchange thru Plesk/QMAIL
Finally some good tech info:
We host lots of websites and frequently host for small companies that would like to use their internal exchange server to send mail. Since we have lots of spam filtering and protection on our webservers, it seems only logical to relay through the webserver where you can use free Linux tools vs expensive Microsoft software. From a security perspective, it only requires that your exchange server only have to talk to one other server via e-mail as well and helps lock down your internal network environment.
All of our servers use Plesk/Qmail, so if your using something different this may not help you.
The steps:
On the Linux webserver:
First make sure all of the proper DNS info is in place for the domain. You want to set up the domain so that your linux box has the MX record pointed at it.
Also make sure that the mail service is turned OFF in the Plesk control panel for the domain.
Update your servers mail whitelist to include the IP address of the exchange server. Note: I don't think you can make dynamic addresses work, so they at least have to have a static IP.
Next, shell into the webserver:
1) update /var/qmail/control/smtproutes to properly reflect the correct mail host for the domain
the entry in the file should look something like: xyzdomain.com:##.##.##.##:
2) update /var/qmail/control/morercpthosts putting in the proper domain name
3) rebuild morercpthosts using /var/qmail/bin/qm-newmrh
4) If you have not already done so, log into plesk control panel , then SERVER > MAIL > WHITELIST, add in the ip of the sending mailserver
5) add IP to any other whitelists, like spamdyke, etc
6) restart QMAIL (service qmail restart)
7) On windows 2k7 or 2K3 open Exchange Management Console
8) Navigate to Organization > Hub Transport > Send Connectors
9) Setup a new send connector, alter existing, key parameter is the next step
10)Under "Network" tab, select route through the following smart hosts (authentication = none or externally secured)
11) save restart the MTA Transport hub
You may further want to specify that any mail communication to the W2K3 or W2K7 domain ONLY comes from your plesk server, this keeps spammers from bombing an otherwise unprotected e-mail server.
This is a nice way to centralize spam protection, av protection etc to your plesk server. I find it is much less expensive and easier to deal with spam in this way.
Microsoft made it official today, all PC's sold with Vista from 6/26/09 until January 31, 2010 will be able to get Windows 7. Lots of manufacturers jumped on the bandwagon with promotions right away including HP & Lenovo.
For all of you folks that are interested in a new PC, we can therefore offer Equus PCs that include any of the following operating systems:
- Windows XP Pro
- Windows Vista Business
- Windows 7 (out in October of this year)
New PCs from The BitWorks
Watch Out for those "free" Movies
Got a new notice about the newest Harry Potter movie being available for download (a pirated copy). Of course you also have to download their player to watch the movie. The player also happens to be malware which will infect your pc. Just another way for your kids to get a virus on your computer.
Raccoons and Birdbaths
We have had a raccoon raiding the birdfeeders lately at the house. Last Saturday night the raccoons decided to take a bath in the birdbath, we have one similar to this one with an old handpump on top of it. Anyway the raccoons dumped the hand pump off and chipped it, luckily it did not break through. It would be great to have some really nice
garden antiques like this one but I fear the various critters ( along with winter ) would eventually destroy them.
So right now we are trying to get the raccoons in a live trap and relocate them to coon paradise somewhere in Wisconsin. We put the trap out last night and then right before I fell asleep I am lying in bed thinking what if I catch a skunk in there?
Labels: birdbaths, garden antiques, raccoons, skunks
Strangest things found in a Computer
Ok, we run a repair shop, see lots of PCs, open lots of cases and I want to shout out to all other computer guys and get some ideas on the strangest stuff ever found inside a computer case.
We have so far encountered:
- Dead Mice
- 1/2 Wrench (a stanley too)
- cow pooh
Hyundai Sonatas
I have spent all of my free time for the better part of a week now underneath a Hyundai Sonata. The timing belt on this bad girl decided to give out on my wife about 600 feet from the driveway so the first sweat involved in fixing it was pushing it home and into the garage. Now, I have reached the stage in my life where spending lots of time under a car is about as appealing as sitting on tacks and I would much rather have a pro do it than attempt this myself. So I call my mechanic.
Apparently this year of Sonata had an interference engine, interference means that the valves hit the pistons and that will interfere with your beer drinking if you pay someone else to fix it.
So here I am in my garage, car in a million pieces, got lots of help from a couple of websites and was really impressed by the interactivity and the helpfulness of those at
Hyundai Forums. Was able to find everything I needed in terms of help, instructions and support. I was even more impressed with Hyundai that I had been in the past, they keep their service manuals on-line (FOR
FREE) at
hmaservice.com.
American car manufacturers take heed, this might be something consumers want and part of the reason we are bailing your a**** out of a jam.Not that this has been an easy chore by any means, nor was it cheap, but I did save at least a G note and a half by doing it myself. Tonight I should put the last bolts (there are about 125) in place and get it working (hopefully), maybe in the next week or so my bloody knuckles will heal up and I can fix something else -- like a martini.
How did I get that virus?
This is probably the question we hear most when folks come in to the shop (usually right after they see the bill).
Most often we can narrow down the cause of the infestation to a few of things:
- going bad places (porn and gambling) being the top two
- downloading everything under the sun, sort of the equivalent to a redneck saying "watch this"
- using peer to peer sharing networks, the big ones being BearShare and LimeWire
- following links in spam e-mail
- general internet surfing where most often the mouse is quicker than the brain
The next question is always, "Well how do I prevent it?"
The short answer is that you can't, virtually impossible, with the possible exception of unhooking your computer from the Internet. But here are some things that help:
- Get good antivirus software (that does not have to cost you anything)
- Maintain your machine (download updates, scan it regularly for accumulated junk)
- Think before you click (If you think the Nigerian foreign minister is really going to send you 6 gazillion dollars, go ahead and click... my number is)
- Read, yes read the fine print when you sign up for downloads, etc.
- If you have others who use your computer (including children) on the Internet, make it a practice to watch them and put rules in place about downloading, usage and where they can visit
No Free Lunch
If there were one thing that I could have my customer's computer users understand is this one phrase: "There is no
free lunch"
Ultimately you are gonna pay for the stuff that you download and put on your PC. It does not matter if you have the best anti-spy ware software, anti virus package around it will not stop you from downloading nefario-ware. You are going to get it unless you stop and "think" prior to clicking on something.
Most of what we see in the virus removal business are lots and lots of situations where users have either purchase some "too good to be true" software at an amazing low price, downloaded some "cool" stuff, or gotten something on a file sharing network and then wonder where the virus came from.
Labels: virus removal
Fast Food Purchase with Credit Card - Think Twice!!
I was just out on a virus removal call last week. I don't get a chance to get out on these very often, but it was fast food establishment, it was late on a Friday and they were hurtin.
Turns out their server was down. If you have worked or supported these systems before you know that most of the time the "registers" all run through the server to process orders and credit cards. So they were in a panic, nothing was happening - especially cc transactions. This was a fairly typical setup with the server in a back office/storage room/storage/whatever room in the back of the establishment.
So Matt to the rescue, cleaned about 20 different virus's and malware packages off the server, off course there wasn't any antivirus system on the server. What was really amazing about this call was really the lack of caring about their customers from the establishment. Here was a server that processed several hundred CC transactions a day being used to surf "whatever" by the folks working in the restuarant. There were no employee policies in place, calls to a regional manager in an attempt to put a security strategy in place went to a so far unanswered voicemail system. It turned out the CCs weren't processing because some sort of modified keylogger was trying to scoop them up and send them off to Bulachekturkminiwherever (it wasn't actually working, but a valid attempt non the less).
So think about this before handing your CC to the pimply faced kid at your favorite fat sandwich in a Styrofoam box sorta place. Who is watching the store? What security do they really have in place? Is it like this establishment where the same computer that processes CC's is used for gaming, surfing faceyspaces and the like? What are you opening yourself up to?
Labels: credit cards, fast food, virus removal
