Michael Lucas
Sysadmin, network engineer, author. https://mwl.io
Sessions
Transport Layer Security is one of the least well-understood parts of system administration. This tutorial will take you into a deep dive into the management of TLS. We'll discuss:
-how TLS Works
-what TLS provides, and what it doesn't
-assessing TLS configurations
-the ACME protocol and Let's Encrypt
-OCSP and Certificate Revocation
-CAA, HSTS, and Certificate Transparency
-debugging TLS
You'll leave with the understanding of TLS that every sysadmin should have.
Google and Microsoft dominate email, but it's still possible to run your own mail server provided you use modern protocols and maintain acceptable behaviors. This half-day tutorial will take you through configuring your own mail system, from a bare BSD operating system up through SPF, DKIM, and DMARC, and discuss the social rules needed to get your messages into Gmail and Outlook.
We'll discuss:
-Unix and email
-The Simple Mail Transfer Protocol
-Postfix and Dovecot setup
-Virtual domains
-MX and SPF records
-SMTP Protocol Tests
-DomainKeys Identified Email
-DMARC
-Webmail with Roundcube
-Rspamd
-Escaping and Surviving Block Lists
Attendees will leave with an understanding of how to configure a SMTP server and maintain it in an increasingly challenging environment.