E-mail filtering in OS/400 SMTP

The iSeries continues to hold bragging rights to the "never had a virus" claim. Its robust design -- with computer security as a core requirement -- goes a long way to explain this unique capability. OS/400, however, can still be hiding and even proliferating computer viruses within the confines of the Integrated File System (IFS). Your best defense is still to maintain the virus updates from a reliable vendor and make sure that all of the users on your network are properly protected. Also, checking to make sure that e-mail clients are configured so that they do not automatically open attachments is very helpful.

But if a virus gets into your network, it is often relayed and passed along quickly via e-mail forwarding. This is where your iSeries can come in handy. It can utilize a new feature in the Mail Server Framework (MSF) that was first introduced as an APAR PTF in V4R5 but is now an integral part of the SMTP server starting in V5R1.

Mail filtering is NOT virus protection, but it will allow you to filter e-mail that passes through your system and to check for a variety of parameters before letting the mail go on to its destination. By using the OS/400 SMTP server as your outbound mail server, you can implement mail filtering and cut down or even stop virus proliferation and other non-productive mail proliferation.

As mentioned above, mail filtering was first introduced in OS/400 V4R5. But with the newer implementation that arrived with V5R1, administration of filtering was vastly improved. This article covers the V5 implementation, but if you're on V4R5 and want to know how to set it up, just let me

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT iSeries system and application security Checking in on your IBM i authorization lists Strategies for securing IBM i production files Changing password security levels and upgrading operating systems on the IBM i Determine the value of parameter UPPWEI in the DSPUSRPRF field Define journal code value "K" Modify content within a journal receiver file Change password parameters on the AS/400 without deactivating user's passwords Prevent insiders with *READ or *USE access from circumventing object authority on IBM i Prevent insiders from obtaining user ids and passwords on the IBM i Change the IBM i system to allow only certain types of SSL protocol versions iSeries physical security Time for a security checkup for your i Recovering your AS/400 security configuration A guide to System i security, part 2: Landing and establishing access A guide to System i security: Descending into the heart of darkness of IT security Learning guide: Steps to a secure System i Securing printed output 12 security tips in 12 minutes Are all of your System i (iSeries) doors closed? -- part 1 Can you trust all those trigger programs? Learning guide: Simple steps to a secure iSeries Systems Management Can you trust all those trigger programs? Are your backups complete? Controlling remote command processing Watch your profiles Avoid locking issues Send message to users at a remote site Security journal receiver management Top 10 backup commands Tracking critical file access in real time Create an iSeries Access image and update it with the latest Service Pack

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary midrange  (Search400.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary

know and I can send you the details or you can just search at the IBM Support Website for APAR SA90552 and find the details there. For V4R5, a PTF SF63889 is also required.

OS/400 mail filtering lets you filter e-mail for the following conditions:

To set up OS/400 mail filtering, do the following:

To implement the various controls that you want to use, you will need to run the Add SMTP List Entry (ADDSMTPLE) command. The TYPE parameter has many values, but the four used for message filtering are as follows:

The FTRDATA parameter on the ADDSMTPLE command lets you enter the specific filter information you want to implement. For example, to filter out a specific file attachment, post a *FTRFILNAME entry with a FTRDATA value of 'MiMail.J2' (to use a popular virus that is going around these days).

The last step is to change the outbound mail server setting in your e-mail client to point to your iSeries system. When you send mail, it will then route through your system via SMTP and MSF. The mail filtering that you've specified will be checked and then it will be handed off to the system you have specified as your mail server.

If you have specific questions about how to set this up and get it fully configured, feel free to contact me directly at rich@kisco.com.

About the author: Rich Loeber is president of Kisco Information Systems Inc., in Saranac Lake, N.Y. The company is a provider of various security products for the AS/400 market.

==================================
MORE INFORMATION ON THIS TOPIC
==================================