Re: Accepting external sendmail on 2.0.2

From: Igor Sobrado (igor_at_string1.ciencias.uniovi.es)
Date: 07/05/05

• Next message: dave: "NetBSD and Java"
• Previous message: Frederick Bruckman: "Re: Accepting external sendmail on 2.0.2"
• In reply to: Frederick Bruckman: "Re: Accepting external sendmail on 2.0.2"
• Next in thread: Martin Neitzel: "Re: Accepting external sendmail on 2.0.2"
• Reply: Martin Neitzel: "Re: Accepting external sendmail on 2.0.2"
• Reply: Frederick Bruckman: "Re: Accepting external sendmail on 2.0.2"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

---

Date: 5 Jul 2005 16:50:05 +0200

Frederick Bruckman <fredb@immanent.net> wrote:
>
> If you only have one interface, or if you don't mind listening on all
> the ones you do have, "address=0.0.0.0" should work, too -- or simply
> comment out that line. The point of that line in the default config
> is to let programs such as "cron" invoke "sendmail" or "mail", and
> let them "just work", without enabling a listener on the network. Of
> course, if you're setting up a mail server, it's a different story.

I think that sendmail listening in the loopback interface by default
is a *fine* decision. It is useful (required!) for "vi" too, and it
is the best method for retrieving email in a secure way using
fetchmail too. Certainly, sendmail should be listening in the
loopback interface by default on all systems, and listening on
external interfaces only on real mail servers.

I like the default NetBSD configuration, without processes listening
to the external interfaces.

Is there a reason X11 listens to external interfaces by default when
X is running? I have closed it:

  $ cat .xserverrc
  #!/bin/sh

  PATH=/usr/X11R6/bin
  exec X :0 -dpi 100 -nolisten tcp

and see no differences (telnet daemon is closed by default, and ssh
does not really require these 6000+x ports opened). Is it reasonable
asking these ports to be closed by default?

Cheers,
Igor.

---

• Next message: dave: "NetBSD and Java"
• Previous message: Frederick Bruckman: "Re: Accepting external sendmail on 2.0.2"
• In reply to: Frederick Bruckman: "Re: Accepting external sendmail on 2.0.2"
• Next in thread: Martin Neitzel: "Re: Accepting external sendmail on 2.0.2"
• Reply: Martin Neitzel: "Re: Accepting external sendmail on 2.0.2"
• Reply: Frederick Bruckman: "Re: Accepting external sendmail on 2.0.2"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

---

Relevant Pages Re: How to Disable Microsoft Networking Port Listeners? ... Disabling them is the right thing to do,..as ... act as an active interface. ... list what is listening at all anywhere as far as I know. ... >>> UDP NETBIOS-NS ... (microsoft.public.win2000.networking) Re: How to Disable Microsoft Networking Port Listeners? ... netstat -a shows active listeners on some undefined interface, ... many companies whose networks were being hacked blind, ... > act as an active interface. ... > list what is listening at all anywhere as far as I know. ... (microsoft.public.win2000.networking) syslog, nfs, uid questions ... can you disable syslog from listening to connections from network ... daemon from listening on the interface. ... Can one bind NFS to a single interface in a two interface machine? ... What does it mean (do you get root privileges in above example)? ... (comp.unix.aix) Re: Dragging self-made JComponents ... Only then should you get too worried about optimizations like ... than making an incidental inner class for listening.. ... group all the methods of the interface together for clarity.either. ... (comp.lang.java.gui) Re: Accepting external sendmail on 2.0.2 ... Clients are most probably run elsewhere. ... "Listening on external interfaces" ... (comp.unix.bsd.netbsd.misc)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• Mailing-Lists
• Newsgroups
• About
• Privacy
• Search
• Imprint

unix.derkeiler.com  > Newsgroups  > comp.unix.bsd.netbsd.misc  > 2005-07