Solved

Preventing Relays with Sendmail

Posted on 1998-12-10
3
194 Views
Last Modified: 2010-03-18
I have a small LAN, where the computers on the inside use the firewall to send messages.  While this works exactly as configured, I wish to minimizer my chances of someone discovering that the port is opened and using the server to SPAM others.  

Anyone can offer insite on the .M4 entries to place in the sendmail.m4 file?  I have been given direct modifications to do with sendmail.cf, but I would much rather have the appropriate M4 entries.

I would of posted my M4 file.  But since it contains information on the mail server location and addess I decided that it might be a security risk.  It can be given at a later time if the need for it becomes evident.
0
Comment
Question by:mfoster
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 2

Expert Comment

by:wqclatre
ID: 1587866
If you upgrade to sendmail version 8.9 forwarding of SMTP messages is not permitted.

http://www.sendmail.org/tips/relaying.html
0
 

Author Comment

by:mfoster
ID: 1587867
That's exactly what I did.  Allowed me to add the necessary changes VIA M4 instead of actually having to modify the actualy .cf file.   Mind you I could of done it.  But I was in no mood to completely botch up sendmail by trying to decipher what it did.  
0
 
LVL 4

Accepted Solution

by:
davidmwilliams earned 100 total points
ID: 1587868
 Make the upgrade to sendmail 8.9.1 and then just rebuild your cf file from your existing m4 file.  You won't need to touch your current m4 file at all - just build a new cf file from it.  By default, sendmail 8.9 does not permit relaying - this option must be switched off explicitly to permit it.
0

Featured Post

Save the day with this special offer from ATEN!

Save 30% on the CV211 using promo code EXPERTS30 now through April 30th. The ATEN CV211 connects a laptop directly to any server allowing you instant access to perform data maintenance and local operations, for quick troubleshooting, updating, service and repair.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

I have seen several blogs and forum entries elsewhere state that because NTFS volumes do not support linux ownership or permissions, they cannot be used for anonymous ftp upload through the vsftpd program.   IT can be done and here's how to get i…
Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question