sendmail configured to send only

From: Christopher Barnard <cbarnar1@xxxxxxxxxxxxx>
Date: Mon, 4 Oct 2010 19:20:58 -0500

I have configured my sendmail.cf (on hosts that are not mailservers) to
send mail to anyone but receive only from localhost. I added to the .mc
file the lines

DAEMON_OPTIONS(`NAME=NoMTA4, Family=inet, Addr=127.0.0.1')dnl
DAEMON_OPTIONS(`Name=MSA4, Family=inet, Addr=127.0.0.1, Port=587, M=E')dnl

This resulted in the the .cf the lines

O DaemonPortOptions=NAME=NoMTA4, Family=inet, Addr=127.0.0.1
O DaemonPortOptions=Name=MSA4, Family=inet, Addr=127.0.0.1, Port=587, M=E

I verified that I cannot connect to port 25 on that server from anywhere
except from itself over the localhost.

I just applied the Recommended Cluster Patches to one of my servers and
it looks like the most recent Kernel patch, 142909-17, modifies the
/etc/mail/sendmail.cf file. In particular, to

O DaemonPortOptions=Name=MTA
O DaemonPortOptions=Port=587, Name=MSA, M=E

However, I am still unable to connect to port 25 from anywhere but
localhost. So sendmail is still working correctly, but how? (Yes, I turned
off IPFilter and disabled tcp wrappers for this test) My monitoring scripts
checks that the DaemonPortOptions have "Addr=127.0.0.1" in order to verify
that sendmail will only send, not receive. It clearly still has the correct
functionality, but my monitoring scripts are now reporting that sendmail
is not configured correctly because 127.0.0.1 is not in the
DaemonPortOptions line. How is sendmail restricting access? And, when
I get to my mailservers, would I make sure that sendmail IS accepting
inbound connections?

Christopher L. Barnard
-------------------
comment your code as if the maintainer is a homicidal maniac who knows where
you live.
_______________________________________________
sunmanagers mailing list
sunmanagers@xxxxxxxxxxxxxxx
http://www.sunmanagers.org/mailman/listinfo/sunmanagers

Prev by Date: FW: Network oddity in zones
Next by Date: Unable to get the T5120 ILOM to respond
Previous by thread: FW: Network oddity in zones
Next by thread: Unable to get the T5120 ILOM to respond
Index(es):
- Date
- Thread

Relevant Pages

Re: sendmail and sm-client very slow to start
... > that sendmail is hanging with the command: ... > strace seems to reveal why; it hangs at the noted position in the ... localhost.localdomain localhost ... # cat /etc/sysconfig/network ...
(Fedora)
Re: Security needed for basic home computer?
... > How do I know whether sendmail is doing more than listening on localhost ... > stage of ignorance I do not even know what to do with an iptables script. ...
(comp.os.linux.security)
Re: sendmail hangs with errors after setting hostname
... I would suggest setting the hostname as a different address from localhost. ... There are multiple instances of sendmail that run, as your rc.conf file has them enabled. ... # Script to start your chosen MTA, ...
(freebsd-questions)
Re: Runaway inodes / clientmqueue
... #svcadm disable sendmail ... H??Received: from localhost (localhost) ... H??To: root ...
(comp.unix.solaris)
Re: Which mailserver should I choose?
... > I just switched from Windows to Linux. ... > I browsed the net and I learned there are a lot of mailservers: ... > postfix, sendmail, courier.... ...
(alt.os.linux.suse)