Solved

Preventing Relays with Sendmail

Posted on 1998-12-10
3
199 Views
Last Modified: 2010-03-18
I have a small LAN, where the computers on the inside use the firewall to send messages.  While this works exactly as configured, I wish to minimizer my chances of someone discovering that the port is opened and using the server to SPAM others.  

Anyone can offer insite on the .M4 entries to place in the sendmail.m4 file?  I have been given direct modifications to do with sendmail.cf, but I would much rather have the appropriate M4 entries.

I would of posted my M4 file.  But since it contains information on the mail server location and addess I decided that it might be a security risk.  It can be given at a later time if the need for it becomes evident.
0
Comment
Question by:mfoster
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 2

Expert Comment

by:wqclatre
ID: 1587866
If you upgrade to sendmail version 8.9 forwarding of SMTP messages is not permitted.

http://www.sendmail.org/tips/relaying.html
0
 

Author Comment

by:mfoster
ID: 1587867
That's exactly what I did.  Allowed me to add the necessary changes VIA M4 instead of actually having to modify the actualy .cf file.   Mind you I could of done it.  But I was in no mood to completely botch up sendmail by trying to decipher what it did.  
0
 
LVL 4

Accepted Solution

by:
davidmwilliams earned 100 total points
ID: 1587868
 Make the upgrade to sendmail 8.9.1 and then just rebuild your cf file from your existing m4 file.  You won't need to touch your current m4 file at all - just build a new cf file from it.  By default, sendmail 8.9 does not permit relaying - this option must be switched off explicitly to permit it.
0

Featured Post

NFR key for Veeam Backup for Microsoft Office 365

Veeam is happy to provide a free NFR license (for 1 year, up to 10 users). This license allows for the non‑production use of Veeam Backup for Microsoft Office 365 in your home lab without any feature limitations.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I have seen several blogs and forum entries elsewhere state that because NTFS volumes do not support linux ownership or permissions, they cannot be used for anonymous ftp upload through the vsftpd program.   IT can be done and here's how to get i…
Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…

615 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question