[Subject Prev][Subject Next][Thread Prev][Thread Next][Subject Index][Thread Index]
Re: [LI] Sendmail Relay Problem
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 19 Dec 99, at 21:06, thus spake Ajay Kumar Nandipati:
> How to stop thirdparty relaying in Sendmail8.9.3 shipped with
> RedHat6.0 using Linuxconf ?
The answer is - you can't completely secure sendmail using
Linuxconf. It still remains open to relaying using the % and :
vulnerablities.
Here's how to close a sendmail open relay --
http://www.sendmail.org/tips/relaying.html
When you update your sendmail (get 8.9.3) - remember to rebuild
your sendmail.cf file or the upgrade will be useless.
Check out ftp://admin.netus.com/sendmail/ and download
preconfigured, secure sendmail 8.9.3 rpms. If you want to build
your sendmail.cf - don't use Linuxconf (as its check_rcpt tables are
a bit faulty). If you can't write sendmail.cf by hand then download
the generator at ftp://ftp.jpcert.or.jp/pub/security/tools/CF/
hope this helps
-----BEGIN PGP SIGNATURE-----
Version: PGP 6.0.2 -- QDPGP 2.60
iQA/AwUBOF2uhJqQidQMDLaoEQLWzACdF4R6/abjNLDiosnQTZe5VMUltrcAn2zI
M6o9EUjcYOfRzokew9L84Dke
=QJ0a
-----END PGP SIGNATURE-----
Suresh Ramasubramanian | suresh@xxxxxxxxxxxxxxx
Stop Spam | Join CAUCE | http://www.india.cauce.org
Phone: +(91-40)3736553/3745398 | eFax: +(1-603)590-5437
Dementia is similar to creativity but
without the expense of art supplies
Dogbert
--------------------------------------------------------------------
The Linux India Mailing List Archives are now available. Please search
the archive at http://lists.linux-india.org/ before posting your question
to avoid repetition and save bandwidth.