How to enable SMTP tweak

From Acenet Knowledgebase
Jump to: navigation, search

In this guide, we will go over how to enable SMTP tweak. The SMTP tweak option will prevent users from bypassing the mail server to send mail (this is a common practice used by spammers). It will only allow the MTA (mail transport agent), mailman, and root to connect to remote SMTP servers.

Basically, SMTP tweak prevents emails being sent through means other than the cPanel mail service, exim.

SMTP tweak is very easy to implement.

[1] Login to your WHM as root.

[2] Go to Security Center. The link is located on the left under the security section.

[3] Scroll down and click on SMTP Tweak. This page will let you enable or disable SMTP tweak.

SMTP Tweak and APF

If you use APF (Advanced Policy Firewall) you need to change certain settings to make sure they both function together properly.

To do so, open the init file with your favorite text editor: 

/etc/init.d/apf

Replace the entire contents of the file with this: 

#!/bin/bash
##
# chkconfig: 345 55 25
# description: Advanced Policy Firewall
#

# source function library
. /etc/rc.d/init.d/functions
# import variables
. /etc/apf/conf.apf
. /etc/apf/internals/internals.conf
ipt="/sbin/iptables"
inspath="/etc/apf"
prog="apf"

case "$1" in
start)
        echo -n "Starting APF:"
        /usr/local/sbin/apf --start >> /dev/null 2> and 1
        echo_success
        echo
        echo -n "Enabling SMTP Tweak:"
        /scripts/smtpmailgidonly on >> /dev/null 2> and 1
        echo_success
        echo
        ;;
stop)
        echo -n "Stopping APF:"
        /usr/local/sbin/apf --stop >> /dev/null 2> and 1
        echo_success
        echo
        ;;
restart)
        $0 stop
        $0 start
        ;;
*)
        echo "usage: $0 [start|stop|restart]"
esac
exit 0

Save the file, and exit. This will ensure that APF does not conflict with SMTP Tweak.

Retrieved from "https://kb.acenet.us/index.php?title=How_to_enable_SMTP_tweak&oldid=1846"