A mail server consists of multiple components. A mail transfer agent (MTA) receives and sends emails via SMTP. Received and accepted emails are then passed to a mail delivery agent (MDA), which stores the mail in a mailbox (usually in mbox or Maildir format). If you want users to be able to remotely access their mail using email clients (MUA), you need to run a POP3 and/or IMAP server.
+---------+ SMTP +---+ +---+ +----------------+ |Other MTA| <----> |MTA| --|MDA|-> Storage <-- |POP3/IMAP server| +---------+ +---+ +---+ +----------------+ ^ ^ | SMTP +---+ | +-------------|MUA|---------------+ +---+
All of these software except Sendmail include a mail delivery agent.
- Exim — A highly configurable mail transfer agent.
- OpenSMTPD — A mail transfer agent, part of the OpenBSD project.
- Postfix — A mail transfer agent, meant to be fast, easy to administer, and secure.
- Sendmail — A well-known mail transfer agent.
- http://www.sendmail.org/ || AUR
- Courier — A mail transfer agent, providing POP3, IMAP, webmail and mailing list services as individual components.
- https://www.courier-mta.org/ || AUR
- Cyrus IMAP — A mail transfer agent with a custom mail spool format, provides POP3 and IMAP services.
- https://www.cyrusimap.org/ || AUR
- Dovecot — An IMAP and POP3 server written to be secure, fast and simple to set up.
- UW IMAP — An IMAP/POP server.
- fdm — A simple program for delivering and filtering mail.
- Procmail — A program for filtering, sorting and storing email (unmaintained).
See also Wikipedia:Comparison of e-mail servers.
|Accept mail from other MTAs.||25||SMTP||STARTTLS|
|Accept submissions from MUAs.||587||SMTP||STARTTLS|
|Let MUAs access mail.||110||POP3||STARTTLS|
If you want to receive mail, you need to set an MX record of your domain name to point to your mail server. Usually this is done from the configuration interface of your domain provider.
A mail exchanger record (MX record) is a type of resource record in the Domain Name System that specifies a mail server responsible for accepting email messages on behalf of a recipient's domain.
When an e-mail message is sent through the Internet, the sending mail transfer agent queries the Domain Name System for MX records of each recipient's domain name. This query returns a list of host names of mail exchange servers accepting incoming mail for that domain and their preferences. The sending agent then attempts to establish an SMTP connection to one of these servers, starting with the one with the smallest preference number, delivering the message to the first server with which a connection can be made.
To obtain a certificate, see OpenSSL#Certificates.
There are various email authentication techniques.
Sender Policy Framework
- Sender Policy Framework (SPF) is an email validation protocol designed to detect and block email spoofing by providing a mechanism to allow receiving mail exchangers to verify that incoming mail from a domain comes from an IP Address authorized by that domain's administrators.
To allow other mail exchangers to validate mails apparently sent from your domain, you need to set a DNS TXT record as explained in the Wikipedia article. To validate incoming mail using SPF you need to configure your mail transfer agent to use a SPF implementation. There are several SPF implementations available, , and can be found in the official repositories.
|Sendmail||through Milter and AUR|
The following websites let you validate your SPF record:
v=spf1 -allmakes any mail server enforcing SPF reject emails from your domain name, thus preventing misuse.
Sender Rewriting Scheme
DomainKeys Identified Mail (DKIM) is a domain-level email authentication method designed to detect email spoofing.
Available DKIM implementations are OpenDKIM and .
There are several handy web sites that can help you test DNS records, deliverability, and encryption support.
Tips and tricks
Most mail servers can be configured to strip users' IP addresses and user agents from outgoing mail.
Available extras that can usually be integrated are: