Stealth E-Mail to the Rescue

How to use stealth e-mail with dynamic DNS and a Treo 650 smart phone.
Linux Server Configuration

My selection of the Gentoo Linux distribution for the project was dictated by the very convenient Portage package management. Portage completely frees the user from hunting down required packages. In operation, it resembles Perl CPAN or Debian apt-get. For installation of Gentoo itself, refer to the Web site. The installation of the OS is mostly manual, and it can be a rather lengthy process (some installations even can take days, because you compile everything yourself), but this investment will pay itself back during server management and application configuration.

You also need to get the DNS and SMTP services from, mentioned above. The Web site provides documentation for all services they provide.

The instructions that follow are Gentoo-specific, but it should be fairly easy to adapt this project to a different distribution. You simply need to make sure that the applications you install have the capabilities (like SASL) used for this solution.

Postfix MTA

We begin installation with the core component, Postfix. Standard Gentoo installation comes with a simple MTA ssmtp that needs to be removed before Postfix installation. Also, Postfix needs to be installed (compiled) with SASL support. This is needed for authenticated mail delivery to the relay host (Alternate-Port SMTP service).

The SASL option is turned on with the sasl keyword added to the Gentoo USE configuration variable. In /etc/make.conf, add:



Install SASL libraries:

# emerge dev-libs/cyrus-sasl

Now remove and add MTAs:

# emerge -C ssmtp
# emerge postfix

Add init rc script startup:

# rc-update add postfix default

Postfix configuration is relatively simple—two configuration files in /etc/postfix need attention: and

Change the information describing your gateway host by editing the file for Postfix. Here, the hostname of your gateway is mygateway, and the domain name is The relay host that you will send all your mail to is, receiving SMTP on port 1234. Both will be provided by as part of the Alternate-Port SMTP service:

myhostname = mygateway
mydomain =
myorigin = $mydomain
mydestination = $myhostname, localhost.$mydomain $mydomain
#home_mailbox = .maildir/
relayhost =
smtp_sasl_auth_enable = yes
smtp_sasl_password_maps = hash:/etc/postfix/saslpass
smtp_sasl_security_options =

Add an extra port (4321) beside 25 to the Postfix file. This will be used to receive SMTP from the Mail Reflector service and also your Treo 650:

4321      inet  n       -       n       -       -       smtpd

Create an SASL password file /etc/postfix/saslpass for host and user using password ????—all provided by


Next, generate a dbm map:

# cd /etc/postfix
# postmap saslpass

As a final touch, you need to enable e-mail relaying from your Treo 650. We use Sprint here, and you will have to find out what Sprint switch IP range will be connecting to your server. The Postfix parameter mynetworks will have to include the network address of the switch. I use beside my home network and a local loop network. It is always best to narrow the range of addresses as much as possible, for security reasons:

mynetworks =

Spam Filter

You need to install two packages: spamassassin and procmail. The steps (for Gentoo) are as follows.

Install Procmail:

# emerge procmail

Install SpamAssassin:

# emerge spamassassin

Update the init rc scripts to start the SpamAssassin server (this is probably done for you if you use a different package manager):

# rc-update add spamd default

Adjust your Postfix configuration to deliver all mail using Procmail. Add this to /etc/postfix/

mailbox_command = /usr/bin/procmail

Create the main Procmail configuration file /etc/procmailrc, and add this recipe to make e-mail pass through SpamAssassin:

:0fw: spamassassin.lock
* < 256000
| /usr/bin/spamc

Start the spamd server:

# /etc/init.d/spamd start



Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

IMAP Server

slot0k's picture

You may want to take a look at dovecot instead of UW-imap.

Re: IMAP Server

pzi123's picture

Looking at the

Looks like quality software. Thanks for the info.


Peter Ziobrzynski

Peter Ziobrzynski

Other ways too

andrewheald's picture

Thanks for some great Treo 650 information. I've just recently acquired one and will be getting it hooked up with Linux soon.

I thought I'd also put in a mention for the excellent combination of Apache, OpenSSL and SquirrelMail. I've worked behind some very security conscious firewall/proxy combos recently. These have always so far at least allowed access to my home webmail directly from the office PC's browser. Owning a domain name and having a fixed IP address also helps with this I'm sure.