We own a Web Server (VPS hosted) from which we send tens of thousands of emails monthly. Of late we have had some issues and would like an EXIM EXPERT to look at our configuration and suggest/make necessary tweaks.
1. If email comes from blocked address or is addressed to a NON-EXISTANT account on this server, we’d like an OUTRIGHT REJECTION. We’d like a 550 code RIGHT AFTER the “RCPT TO” command.
2. Right now the server uses IP/Host Authentication. If email comes from a specific IP on our list, it lets it in, REGARDLESS of username/password. We want it to be BOTH IP/Host Authenticated AND user/password verified (BOTH conditions must be true to successfully send!)
3. Right now we have DomainKeys and SPF working, we’d like to have DKIM working as well
4. Security – we’d like to be secured against brute force attacks – if a person gets their email password wrong 10 times in a row, that email should be somehow flagged or disabled (so that people can’t just loop through all possible permutations!)
5. We’d like our exim log to rotate on a weekly basis (log becomes log.1, log.1 becomes log.2, log.2 becomes log.3, log.3 becomes log.4…log.4 is deleted)
6. We'd like a weekly report (eximstat is fine) emailed to us to let us know the important stats of the exim mail server (successful vs. unsuccessful sends; average time in queue; size of queue; # of frozen messages etc)
7 Any other best practices/tips you can recommend would be appreciated, and we will fully compensate for time
The successful candidate will be an exim expert who has successfully implemented such solutions in the past.