Changes

==MAIL SERVER RESOURCESOVERVIEW & PREPARATION==

* [https://prezi.com/iuk-advzak_o/mail-servers-postfix/ OPS335 Mail Server Notes ] (Course Notes providing Mail Server Concepts)* [http://www.simplehelp.net/2008/12/01/how-We are going to-send-spread the remaining email-from-labs over a few weeks, so that by the-linux-command-line/ Mail Send Command] (examples how end of this topic, you will have a sufficient understanding of what services are involved in sending, filtering, and reading email. You will also have the skills to send e-configure a basic mail setup using mail command)* [http://www.johnkerl.org/doc/mail-how-tothe default services provided for your Centos7 Linux distribution.html#prompt_commands View and Manage Received e-mail Mesages] (Common commands to view and manage received email messages)* [https://support.google.com/mail/answer/29436?hl=en Reading Full Email Headers] (Explanation of message header information)

==OVERVIEW &amp; PREPARATION==This lab will show you how to set up a Mail User Agent ('''MUA'''), using the mailx package on your '''VM2''' machine, to allow users of that VM to locally send and receive e-mails. You will also be able to send a text-based e-mail from your '''VM2 machine''' to your '''Seneca mail account''' (only to send to an external server, but <u>not</u> receive). You will also learn which Mail Transfer Agent (MTA) is allowing messages to be sent locally within your VM2 machine and also externally to your Seneca College mail account. In addition, you will learn where the message store (MS) is located that stores mail messages until they are viewed and either deleted or transferred to other folders. In order to send e-mail messages '''between your different VMs, a more complex set-up is required''', and will be addressed in the second part of lab4 (lab4b). The '''diagram''' below shows the layout of the what this lab should be able to accomplish:  [[Image:email-setupEmail-simpleservers.png]]

We will be using a simple text-based '''Mail User Agent ('''MUA)''') called '''mailx''' in this lab to '''both send and receive ''' mail messages within your VM2 machine''' vm2''' machine and to '''only send ''' mail messages from your '''vm2''' machine to your Seneca e-mail account'''.

'''NOTE:''' Due Because you're using private IP addresses and no external DNS servers are pointing to the simplicity of this mail server setup, and the setup of Seneca College's mail serveryour network, you '''<u>cannot</u>''' send Seneca e-mail messages from outside your environment to your '''VM2vm2''' machine.

#Issue the following command to install Install the '''mailx''' application (MUA):<br>'''using yum install mailx'''<br><br>

===Sending a Mail Message from your VM2 vm2 Machine to your Seneca Email Account=== {{Admon/important|Note|These instructions no longer work reliably. You can still send email to your own email server, and look at the server logs to see that it did really get sent. But it probably won't be accepted for one of a multitude of good reasons. If it doesn't work for you: don't worry about it for lab submission purposes.}}

We will now test to see if your MTA for your VM2 vm2 machine is correctly running by sending email messages from your VM2 vm2 machine to your Seneca e-mail account.

#Test email from your machine by sending an email to your '''Seneca email account''' using the following command:<br>'''mail -s "Lab4a - test1" <Your Seneca email address>'''<br><br>'''NOTE:''' after you type in the body of the mail message, move to an empty line, type period "." and then press the ENTER key combination '''&lt;ctrl&gt;&lt;d&gt;''' to send the message.<br><br>#Check your Seneca email account (Inbox / Junk Email Folder) to see if you got the email (note that it may take a <u>few minutes to arrive</u>, so you may also wish to try an alternate email account if you have one like gmail, etc). When you do receive that email, make a note of the return address.

#Test Once you have succeeded in sending the first email from your '''Host Machine''' by sending an , send a second email to your Seneca account the same destination using the following command:<br>'''mail -r "someone@hacker.com (Canadian Revenue Agency)" -s "Lab4a - test2" <Your Seneca email address>#Check your Seneca email to see if you got the email. If you did, make a note of the return address. How would you think that including the '''-r''' option could be used by penetration hackers to gain access to a computer system? What sort of steps do you think should be taken to help prevent this type of attack from happening?

===Sending a Mail Message within your VM2 vm2 Machine (vm2)===

We will now test both your MUA (mailx) and MTA (postfix) by sending and receiving e-mail messages on the local VM2 vm2 machine only.

#Send an email message locally (i.e. only within) your VM2 vm2 machine ) by issuing the command:<br>'''mail -s "Lab4a - Local - Test1" <yourSenecaID>'''

# Issue the following command: Login with your '''cat /var/log/spool/mail/<yourSenecaID>regular user'''<br>What do you see? What does this show you in terms of where mail is stored on your e-mail server?#Issue and issue the following command to read the mail message you send to yourself:<br>'''mail'''<br><br>'''NOTE:''' You can refer to the link below to view a reference chart on how to read and delete received e-mail messages at the mail command prompt:<br>[http://www.johnkerl.org/doc/mail-how-to.html#prompt_commands Commands to View and Manage Received e-mail Mesages]<br><br>#Issue the following command: '''cat /var/spool/mail/<yourSenecaID>'''<br>What do you see? What does this show you in terms of where mail is stored on your e-mail server?#If you received an e-mail message, the message and subject line should appear as a listing in your mail command.<br><br>'''NOTE:''' If you did not receive a mail message, check your mail server settings, check to see if you your mail server is running and also check '''/var/log/maillog''' and '''/var/log/messages'''(this step requires '''root''' privilege).<br><br>#Type Once you have received the message, type the mail message number that is displayed in your e-mail message list in the prompt and press ENTER. You should be able to confirm the message body that you sent.

#Re-issue the '''mail''' command. What happened? Issue the command: '''cat /var/spool/mail/<yourSenecaID>'''. What do you notice?

==INVESTIGATION 2We will be using the '''Postfix''' application as the '''MTA''', and we will be setting it up on your '''vm2''' and '''vm3''' machines. They will act as the "sending" email servers for your internal network. You will be able to send email out of your network, and receive email from within your network, but you will '''<u>not</u>''' receive email from outside of your network due to the following reasons: IDENTIFYING A DEFAULT MAIL TRANSFER AGENT * Individuals outside of your domain will never find the MX records because there are no other DNS servers pointing to your DNS server (i.e. you haven't paid for it).* Even if the individuals could read your MX records, your local network is using IP addresses on a '''MTAprivate subnet''')==, which is not routeable on the Internet, so it cannot be reached from outside of your system.

Obviously === Verify the Mail Transfer Agent must be running in order to send e-mail messages locally or to external mail server (like myseneca.ca). In this section, we will determine information relating to Seneca College's MTA when email messages are sent via your VM2 machine.Postfix Service Status ===

Normally, email headers are seldom seen with our e-mail applications such as #The '''MS Outlookpostfix''' (webmail) or '''Thunderbird''application should be installed by default. If it isn't, install it. There are way in order to view detailed header information for each #Postfix is capable of sending email we send with the default configuration, so start and enable this service, and verify that provides information how the email message was sent, including postfix service is running.#Look for the running postfix service in the name list of listening ports by issuing the program that following command:<br><source>ss -atnp</source>#Which service is postfix running as ? Locate the Mail Transfer Agent port used by SMTP, and its IPADDR. Although these email headers may look complicated, they can trace the steps of sending for connections with the state LISTEN (i.e-mail messages among the MTAs to gain a better understanding of the email transmission process. currently listening).#Write your observations in your lab logbook.

We will be demonstrating the use of the '''Perform the following Steps:nc'''application to test that the postfix service is running and listening.

|- valign="top"|[[Image:outlook-lite-mode.png|thumb|right|300px|# If your MS outlook web application looks like above, then your MS Outlook application is using the '''lite versionnc'''command is not installed on your vm2 machine, and you would have to switch versions install it (see below install '''nc''' command for procedureyour '''vm3''' as well). ]]|# Connect from your '''vm2''' to itself using the '''nc''' command by issuing the following command:<br><source >nc localhost 25</source>[[Image# You should see a response:outlook-regular-mode<br><source >220 vm2.yourdomain.png|thumb|right|300px|If your MS outlook web application looks like aboveops ESMTP Postfix</source># You could theoretically use SMTP commands to send an email here, then but this would be a very unusual use of your MS Outlook application is using mail server. You have an '''MUA''' for a reason.#Enter the command '''standard versionQUIT'''to close the connection to the server, so you can skip then '''<ctrl>-c''' to terminate the procedure to switch versionsnc command.]]|}

#Make certain you are in your '''vm2''' machine.#Send another email message from your VM2 machine to your '''Seneca email account''' using the command:<br>'''mail -s "Lab4a - Header Message" <Your Seneca email address>'''<br><br>:'''NOTE:''' after you type in the body of If it worked, this indicates that the mail messagepostfix service is running, move to an empty linelistening, type period "." and press the ENTER key responding to send the message.<br><br>#View your e-mail message in your Seneca email accountconnections.

[[Image:option-lite.png|thumb|right|400px|How We need to configure the MTA not only to listen to switch connections from other (separate) MTAs, but to '''standard version''': click set the domain name and server name in order to allow the user to un-check issue emails in the ''lite version'' option "standard way", and save option settingallow mail messages to provide a correct email address for replies. ]]

:If you are using web-mail to read your Seneca e-mail message, then your Mail User Agent is probably using the '''MS Outlook Web mail applicationPerform the following steps:'''. In order to view mail header information in your MS Outlook web application, you need to be in a particular "viewing-mode".

# In your '''vm2''' machine, launch in editing session for the postfix configuration file called:This program can run in '''standard version/etc/postfix/main.cf''' or # Our first editing change to the Postfix configuration will be to make the service "listen" for incoming connections on the external interface (i.e '''lite versioneth0'''from the VMs point of view). If your MS Outlook web application <br>Change the value of the following parameter to what is using displayed below:<br><source>inet_interfaces = all</source># We should also set the string that will end up in the '''From:''' header in messages sent by this server.<br>Change the '''"lite version"mydomain''', then it should look similar option to YOUR domain name (shown below):<source>mydomain = yoursenecaid.ops</source># Also you must set the left-most of '''hostname''' for this server so that will correctly specify the hostname in the '''From:''' header in a sent mail message.<br>Make certain the two side-by-side diagrams displayed abovefollowing parameter only appears once (shown below):<source>myorigin = $myhostname</source>#Ensure that your '''hostname''' and '''DOMAIN''' name is properly set on your machine, and otherwise you should follow the procedure below to switch will need to set the '''"standard version"myhostname'''parameter. If your MS Outlook web application appears like the right<br>{{Admon/important|Warning|Make sure there are no other un-most sidecommented copies of those above-by-side diagrams abovementioned parameters in the Postfix configuration file.}}<br><ol><li value="6">Restart the postfix service, then your program is using use the '''"standard version"ss''', which mean command to confirm that you can the your MTA is now listening on <u>skipall</u> interfaces (not just loopback)</li><li>Test by connecting to it (using the following procedure to switch versions'''nc''' command) from your '''vm3''' machine.</li></ol>

:'''Procedure to Change from Lite-mode to Regular mode:''' :<ol type="a"><li>Click '''options''' located at the top-right corner of the MS Outlook web application window (to the left of the '''Sign Out''')</li><li>Click '''Outlook''' Version on the left-side of the ''Options'' window.</li><li>Click to de-select the '''Use the light version''' (i.e. no check mark)</li><li>Click the Save button near the top of the Options window to save your settings.</li><li>Sign-out of your MS Outlook SessionRecord steps, commands, and login again.<br><br>'''NOTE: If your MS Outlook application does not change versions, then close all of observations in INVESTIGATION 2 in your webOPS335 lab log-browsers, and then log into your Seneca email account.book'''<br><br></li></ol>

==INVESTIGATION 3: SENDING EMAIL BETWEEN MTAs for vm2 and vm3 (NO ENCRYPTION)= Viewing Seneca Mail Message Headers ==={| width="40%" align="right" cellpadding="10"

|- valign="top"|[[Image:view-message-details.png|thumb|right|300px|Your '''vm2'Right-click''server should now be capable of ' on the mail message that you recently sent with subject line "Lab4a - Header Message" and, select ''sending'View Message Details''and '. ''receiving'NOTE: If no mail message headers appear, try the previous step again until you see mail message header information.''email, but we can' ]]|[[Image:message-detailst be certain until we test it.png|thumb|right|300px|Use these header details to analyse information regarding This also would not help the users on the MTAs use to transfer other machines in the mail message from your VM2 machine to your Seneca mail account.]]|}Now that you network, which are using the standard version still not capable of MS Outlook, we will now analyse the mail message header in your Seneca e-mail account that was sent from your VM2 machine to obtain information regarding Seneca's Mail Transfer Agent (MTA)receiving email.

#Repeat the configuration from investigation 2 on '''Right-clickvm3''' on the mail message (swap vm2 and vm3 when issuing command so that you recently sent with subject line "Lab4a - Header Message".#Within the context menuare configuring vm3, select '''View Message Details'''.<br><br>'''NOTE: If no mail message headers appear, try the previous step again until you see mail message header information.'''<br><br>#To make the header information easier and using your vm2 server to read, highlite test the text, copy and paste into a text editor (like '''gedit'''connections).<br><br>#Below Once that is complete, send an example of header information that was sent by user msaul within their domain name msaul.org:<br><br> <source lang="bash">Received: from SN1PR07MB2288.namprd07.prod.outlook.com (10.164.47.158) by DM3PR07MB2284.namprd07.prod.outlook.com (10.164.33.158) with Microsoft SMTP Server (TLS) id 15.1.409.15 via Mailbox Transport; Thu, 18 Feb 2016 15:08:51 +0000Received: email from BLUPR07CA088.namprd07.prod.outlook.com (10.160.24.43) by SN1PR07MB2288.namprd07.prod.outlook.com (10.164.47.158) with Microsoft SMTP Server (TLS) id 15.1.409.15; Thu, 18 Feb 2016 15:08:49 +0000Received: from BN1BFFO11FD041.protection.gbl (2a01:111:f400:7c10::1:173) by BLUPR07CA088.outlook.office365.com (2a01:111:e400:8ae::43) with Microsoft SMTP Server (TLS) id 15.1.409.15 via Frontend Transport; Thu, 18 Feb 2016 15:08:49 +0000Authentication-Results: spf=none (sender IP is 142.204.244.22) smtp.mailfrom=msaul.org; senecacollege.ca; dkim=none (message not signed) header.d=none;senecacollege.ca; dmarc=none action=none header.from=msaul.org;Received-SPF: None (protection.outlook.com: msaul.org does not designate permitted sender hosts)<b>Received: from vm2.localdomain (142.204.244.22) by BN1BFFO11FD041.mail.protection.outlook.com (10.58.144.104) with Microsoft SMTP Server id 15.1.415.6 via Frontend Transport; Thu, 18 Feb 2016 15:08:49 +0000</b>'''Received: by root on vm2.localdomain (Postfix, from userid 1000) id 4EB6210866B2; Thu, 18 Feb 2016 05:08:44 -0500 (EST)'''Date: Thu, 18 Feb 2016 05:08:44 -0500To: <murray.saul@senecacollege.ca>Subject: Lab4a - Header Messageto '''User-Agent: Heirloom mailx 12.5 7/5/10root on vm3'''MIME-Version: 1.0Content-Type: text/plain; charset="us-ascii"Content-Transfer-Encoding: 7bitMessage-ID: <20160218100844.4EB6210866B2@vm2.localdomain>, and then reply '''From: Murray Saul <msaul@msaul.org>'''from vm3 to vm2'''Return-Path: msaul@msaul.org'''</source>#Locate the section for the MTA that was used to transfer the message from your VM2 machineIf both messages arrive, both MTAs are working. What program does that MTA If not, use? What is the IPADDR? Record your observations in your lab logbook.<br><br>#Locate the section for the MTA that was used troubleshooting tools and techniques you have already learned to receive the e-mail message for your Seneca College e-mail. What program does that MTA use? What is the IPADDR? Are those two MTAs diagnose and fix the same? Record your observations in your lab logbookproblem.<br><br>#Use either the {{Admon/important |Backup your VMs!|You MUST perform a '''nslookupfull backup''', of ALL of your VMs whenever you complete your '''hostOPS335 labs''', or when working on your '''digOPS335 assignments''' utilities to query those servers to see if you can obtain additional information regarding those servers.  === Resetting MS Outlook Web Application to Lite Version (If Required) === '''If your MS Outline web application was previously You should be using the lite versiondump or rsync command, and you wish to revert to this original setting, perform should use the following steps:''' #Click the '''settings''' icon (looks like a gear located left Bash shell script that you were adviced to the help (?) icon.#Click the General categories under the options on the left-side of the options menu.#Click Light Version, and create in the details area order to the right, make certain that the Use the light version backup all of Outlook on the web is selected (i.e. check mark appears), and click on Save at the topyour VMs.}}#Sign-out of your MS Outlook Session, and login again.<br><br>'''NOTE: If your MS Outlook application does not change versionsRecord steps, then close all of your web-browserscommands, and then your observations in INVESTIGATION 3 in your OPS335 lab log into your Seneca email account.-book'''

'''Record stepsUpon completion of this lab you should have postfix mail servers running on two machines, and starting automatically when they do. These servers must have sent email both ways between each other (from vm2 to vm3, commandsand from vm3 to vm2), and to your observations in INVESTIGATION 2 in your OPS335 lab log-book'''seneca email (or other external mail server).

Arrange proof that You'll get the same grade regardless of how you can send e-mail from your '''VM2''' machine choose to submit your '''Seneca College e-mail account''', and than you can '''send and receive e-mail messages locally on your VM2 machine only'''. Also show your logbook notes regarding MTA information from your sent email header on your Seneca College mail accountwork.

#Briefly list the students steps to install the MUA on your server for text-based messaging.#Briefly list the steps to trouble-shoot your server if you could not send e-mail messages from your VM2 vm2 machine to an external e-mail server.#Write the command to send an e-mail message from your VM2 vm2 to your Seneca College e-mail account.#What are the commands to issue in the mail prompt to:<ul><li>Read the first e-mail message displayed</li><li>Save the 4th e-mail message to the file pathname: ~/maildir/3.msg.txt</li><li>Delete the 3rd e-mail message displayed</li><li>Exit the mail command prompt and return to the shell</li></ul><br>#What were the results of sending emails locally on your VM2 vm2 machine? Show log segments to verify your answers.# What is the purpose of an MTA?# What is the purpose of an MUA?# Draw a simple diagram showing how an MUA and an MTA are used to send e-mail messages between different servers.#List the steps to show your email header to trace test a running postfix service using the transmission between Mail Transfer Agents among different mail serversnc application.