Kubhomba tsamba ndeimwe yemhando dzekare dzekurwiswa kwecyber. Pakati payo, inofanana neyakajairwa kurwiswa kweDoS, chete panzvimbo yefungu rezvikumbiro kubva kune akasiyana IP kero, masaisai emaemail anotumirwa kune sevha, iyo inosvika muhuwandu hukuru kune imwe yeemail kero, nekuda kweiyo mutoro. pairi inowedzera zvakanyanya. Kurwisa kwakadaro kunogona kutungamirira mukusakwanisa kushandisa bhokisi retsamba, uye dzimwe nguva zvinogona kutungamirira kukukundikana kwesevha yose. Nhoroondo refu yerudzi urwu rwe cyberattack yakatungamira kune akati wandei ezvakanaka uye zvisina kunaka mhedzisiro kune system administrator. Zvinhu zvakanaka zvinosanganisira ruzivo rwakanaka rwekubhomba tsamba uye kuwanikwa kwenzira dziri nyore dzekuzvidzivirira kubva mukurwiswa kwakadaro. Zvinhu zvisina kunaka zvinosanganisira huwandu hukuru hwemasoftware anowanikwa pachena ekuita mhando idzi dzekurwiswa uye kugona kweanorwisa kuzvidzivirira kubva mukuonekwa.
Chinhu chakakosha cheiyi cyber kurwisa ndechekuti hazvigoneke kuishandisa kuita purofiti. Zvakanaka, murwi akatumira maemail kune rimwe bhokisi retsamba, zvakanaka, haana kubvumira munhu kuti ashandise email kazhinji, zvakanaka, murwi akabira email yekambani yemumwe munhu ndokutanga kutumira zviuru zvetsamba muGAL yese, inova. nei sevha yakapunzika kana kutanga kudzikira zvekuti yakatadza kuishandisa, uye chii chinotevera? Zvinenge zvisingaite kushandura cybercrime yakadaro kuita mari chaiyo, saka kungobhomba tsamba ikozvino chinhu chisingawanzo kuitika uye vatariri vehurongwa, pavanenge vachigadzira zvivakwa, vangangosarangarira kukosha kwekudzivirira kubva pakurwiswa kwecyber.
Nekudaro, nepo email ichibhomba pachayo ibasa risingaite kubva pakuona kwekutengesa, inowanzova chikamu chezvimwe, zvakanyanya kuomarara uye akawanda-nhanho cyber kurwiswa. Semuenzaniso, pakubira tsamba nekudzishandisa kubira account mune rimwe basa reruzhinji, vanorwisa vanowanzo "bhomba" bhokisi retsamba remunhu anenge abirwa nemabhii asina zvazvinoreva kuitira kuti tsamba yekusimbisa irasike murukova rwavo uye isingaonekwe. Kubhomba kwetsamba kunogona kushandiswawo senzira yekumanikidza hupfumi pane bhizinesi. Nekudaro, kubhomba kwakasimba kwebhokisi retsamba rebhizinesi, iro rinogashira zvikumbiro kubva kune vatengi, rinogona kuomesera basa navo uye, semhedzisiro, inogona kutungamira kukudzikira kwemidziyo, mirairo isina kuzadzikiswa, pamwe nekurasikirwa kwemukurumbira uye kurasikirwa purofiti.
Ndokusaka maneja wehurongwa asingafanirwe kukanganwa nezve mukana wekubhomba email uye nguva dzose kutora matanho anodiwa ekudzivirira kubva pakutyisidzira uku. Tichifunga kuti izvi zvinogona kuitwa padanho rekuvaka zvivakwa zvetsamba, uye zvakare kuti zvinotora nguva shoma uye kushanda kubva kune sisitimu maneja, hapana zvikonzero zvekusapa zvivakwa zvako kudzivirira kubva kubhomba retsamba. Ngatitarisei kuti dziviriro kubva kukurwisa kwecyber kunoitwa sei muZimbra Collaboration Suite Open-Source Edition.
Zimbra yakavakirwa paPostfix, imwe yeakavimbika uye anoshanda akavhurika sosi Mail Transfer Agents iripo nhasi. Uye imwe yemabhenefiti makuru ekuvhurika kwayo ndeyekuti inotsigira akasiyana siyana echitatu-bato mhinduro yekuwedzera kushanda. Kunyanya, Postfix inotsigira zvizere cbpolicyd, chishandiso chepamberi chekuona mail server cybersecurity. Pamusoro pekudzivirira-spam kuchengetedzwa uye kusikwa kwevachena, vatema uye greylists, cbpolicyd inobvumira Zimbra maneja kugadzirisa SPF siginecha verification, pamwe nekuisa zvirambidzo pakugamuchira uye kutumira maemail kana data. Ivo vese vanogona kupa dziviriro yakavimbika kubva kune spam uye phishing maemail, uye kudzivirira sevha kubva kune email bhomba.
Chinhu chekutanga chinodiwa kubva kune system administrator ndeye kumisa iyo cbpolicyd module, iyo yakafanoiswa muZimbra Collaboration Suite OSE pane yezvivakwa MTA server. Izvi zvinoitwa uchishandisa murairo zmprov ms `zmhostname` +zimbraServiceEnabled cbpolicyd. Mushure meizvi, iwe unozofanirwa kumisa iyo webhu interface kuitira kuti ugone kubata zvakanaka cbpolicyd. Kuti uite izvi, iwe unofanirwa kubvumidza kubatana pawebhu port nhamba 7780, gadzira chinongedzo chekufananidzira uchishandisa murairo. ln -s /opt/zimbra/common/share/webui/opt/zimbra/data/httpd/htdocs/webui, uye wozogadzirisa faira rezvirongwa uchishandisa nano command /opt/zimbra/data/httpd/htdocs/webui/includes/config.php, paunoda kunyora mitsara inotevera:
$DB_DSN="sqlite:/opt/zimbra/data/cbpolicyd/db/cbpolicyd.sqlitedb";
$DB_USER="mudzi";
$DB_TABLE_PREFIX="";
Mushure meizvi, chasara kutangazve Zimbra neZimbra Apache masevhisi uchishandisa zmcontrol restart uye zmapachectl restart mirairo. Mushure meizvi, iwe uchave uine mukana wewebhu interface pa :7780/webui/index.php. Chinhu chikuru ndechekuti musuwo weiyi web interface hausati wadzivirirwa munzira ipi neipi uye kuitira kudzivirira vanhu vasina mvumo kupinda mairi, unogona kungovhara zvinongedzo pachiteshi 7780 mushure mekupinda kwega kwega kune web interface.
Iwe unogona kuzvidzivirira kubva kune mafashama emaemail anouya kubva kune yemukati network nekushandisa quotas yekutumira maemail, ayo anogona kusetwa nekutenda cbpolicyd. Zvikamu zvakadaro zvinokutendera kuti uise muganhu pahuwandu hwehuwandu hwemavara anogona kutumirwa kubva kune imwe mailbox mune imwe unit yenguva. Semuenzaniso, kana maneja ako ebhizinesi akatumira avhareji ye60-80 maemail paawa, ipapo unogona kuseta quota yemaemail zana paawa, uchifunga nezve diki margin. Kuti vasvike pachiyero ichi, mamaneja anozofanira kutumira email imwe chete mumasekonzi makumi matatu nematanhatu. Kune rimwe divi, izvi zvakakwana kushanda zvizere, uye kune rimwe divi, nechikamu chakadaro, vapambi vakawana mukana kune tsamba yemumwe wemamaneja ako havazotangisa tsamba bhomba kana kurwisa kukuru kwe spam pabhizinesi.
Kuti uise chikamu chakadaro, iwe unofanirwa kugadzira email itsva yekutumira inorambidza mutemo muwebhu interface uye tsanangura kuti inoshanda kune ese mabhii anotumirwa mukati medura uye kune mavara anotumirwa kune ekunze kero. Izvi zvinoitwa sezvinotevera:
Mushure meizvi, unogona kutsanangura zvakadzama zvirambidzo zvine chekuita nekutumira tsamba, kunyanya, isa nguva yenguva mushure meiyo iyo zvirambidzo zvichagadziridzwa, pamwe neshoko iro mushandisi akadarika muganhu wake achagamuchira. Mushure meizvi, unogona kuseta kurambidzwa kutumira tsamba. Inogona kuiswa zvese senhamba yemavara anobuda uye senhamba yemabhayiti eruzivo rwunofambiswa. Panguva imwecheteyo, tsamba dzinotumirwa kudarika muganhu wakatarwa dzinofanira kubatwa zvakasiyana. Saka, semuenzaniso, unogona kungozvidzima nekukasira, kana kuti unogona kuzvichengeta kuitira kuti zvitumirwe pakarepo mushure mekunge meseji yekutumira meseji yagadziridzwa. Yechipiri sarudzo inogona kushandiswa pakusarudza iyo yakakwana kukosha kweiyo muganho wekutumira maemail nevashandi.
Pamusoro pezvirambidzo pakutumira tsamba, cbpolicyd inokutendera kuti uise muganho wekugamuchira tsamba. Kudzikamisa kwakadaro, pakutanga pakuona, ndiyo mhinduro yakanakisa yekudzivirira kubva kubhomba retsamba, asi kutaura zvazviri, kuisa muganhu wakadaro, kunyange wakakura, uzere nenyaya yekuti mune mamwe mamiriro tsamba yakakosha inogona kusasvika kwauri. Ndosaka zvisingakurudzirwe zvakanyanya kugonesa chero zvirambidzo kune inouya tsamba. Nekudaro, kana iwe uchiri kufunga kutora njodzi, unofanirwa kusvika pakuseta iyo inouya meseji muganho nekutarisisa. Semuenzaniso, unogona kudzikamisa nhamba yeemail anouya kubva kune vanovimbwa navo kuitira kuti kana mail server yavo ikakanganiswa, haizotangisa spam kurwisa bhizinesi rako.
Kuti udzivirire kubva pakuwanda kwemeseji dzinouya panguva yekubhomba tsamba, maneja wehurongwa anofanira kuita chimwe chinhu chakangwara pane kungomisa tsamba dzinouya. Mhinduro iyi inogona kunge iri kushandiswa kwegrey list. Nheyo yekushanda kwavo ndeyekuti pakuedza kwekutanga kuendesa meseji kubva kune asingavimbike anotumira, chinongedzo kune server chinovhiringwa kamwe kamwe, ndosaka kutumira kwetsamba kuchitadza. Nekudaro, kana pane imwe nguva sevha isingavimbiki ichiedza kutumira iyo tsamba zvakare, sevha haivhare kubatana uye kuendesa kwayo kunobudirira.
Chinangwa chezviito zvese izvi ndechekuti zvirongwa zvekutumira otomatiki maemail kazhinji haatarise kubudirira kwekutumira meseji yakatumirwa uye usaedze kuitumira kechipiri, nepo munhu achizoita chokwadi chekuti tsamba yake yakatumirwa kero kana kwete.
Iwe unogona zvakare kugonesa greylist mune cbpolicyd web interface. Kuti zvese zvishande, iwe unofanirwa kugadzira mutemo unozosanganisira mavara ese anouya anonyorerwa vashandisi pane yedu server, uyezve, zvichibva pane iyi mutemo, gadzira mutemo weGreylisting, kwaunogona kugadzirisa nguva iyo cbpolicyd ichamirira. kuti udzokorore mhinduro kubva kune munhu asingazivikanwe atumira. Kazhinji inenge 4-5 maminitsi. Panguva imwecheteyo, grey rondedzero inogona kugadzirwa kuitira kuti ese akabudirira uye asina kubudirira kuedza kuendesa mabhii kubva kune vakasiyana vanotumira anotariswa uye, zvichienderana nenhamba yavo, sarudzo inoitwa yekuwedzera otomatiki mutumi kune chena kana nhema rondedzero.
Isu tinokwevera pfungwa dzako kune chokwadi chekuti kushandiswa kwegrey rondedzero kunofanirwa kuitwa nebasa rakakura. Zvingave zvakanaka kana kushandiswa kweiyi tekinoroji kuchienda pamwe chete nekuchengetedza nguva dzose kwemavara machena uye matema kubvisa mukana wekurasikirwa nemaemail akakosha zvechokwadi kune bhizinesi.
Pamusoro pezvo, kuwedzera SPF, DMARC, uye DKIM cheki inogona kubatsira kudzivirira kubva kubhomba yeemail. Kazhinji mabhii anosvika kuburikidza nekubhomba tsamba haapfuure macheki akadaro. Maitirwo azvo akakurukurwa .
Nekudaro, kuzvidzivirira kubva pakutyisidzira kwakadai sekubhomba email kuri nyore, uye unogona kuita izvi kunyangwe uri padanho rekuvaka Zimbra zvivakwa zvebhizinesi rako. Nekudaro, zvakakosha kuti ugare uine chokwadi chekuti njodzi dzekushandisa dziviriro yakadaro haimbopfuuri mabhenefiti aunowana.
Source: www.habr.com