Security Basics mailing list archives
Re: Sendmail 8.11 configuration/security issue
From: Ned Fleming <ned () kaw us>
Date: Fri, 03 Jan 2003 16:53:08 -0600
On Fri, 3 Jan 2003 16:57:26 -0500, "Keith T. Morgan" <keith.morgan () terradon com> wrote: [snip]
On Fri, 3 Jan 2003 oobs3c02 () attbi com wrote:I'm running sendmail 8.11 on a Solaris server. The server has a single interface and sits in my DMZ. I'm trying to find a way to block inbound mail with my domain spoofed as the sender.
[snip] Are you using the FEATURE(relay_local_from) in Sendmail? This feature allows relaying if the message claims to originate at your domain. Since forging this address is trivial, this is probably a bad idea. But I'm no Sendmail expert. My best advice would be to switch to Postfix, which is orders of magnitude easier to configure.
Current thread:
- Sendmail 8.11 configuration/security issue oobs3c02 (Jan 03)
- Re: Sendmail 8.11 configuration/security issue simsjs (Jan 03)
- Re: Sendmail 8.11 configuration/security issue john65 (Jan 03)
- Re: Sendmail 8.11 configuration/security issue Don Voss (Jan 05)
- Re: Sendmail 8.11 configuration/security issue Timothy M. Lyons (Jan 06)
- <Possible follow-ups>
- RE: Sendmail 8.11 configuration/security issue Keith T. Morgan (Jan 03)
- Re: Sendmail 8.11 configuration/security issue Ned Fleming (Jan 03)
- Re: Sendmail 8.11 configuration/security issue Wahyu Kelik (Jan 05)
- RE: Sendmail 8.11 configuration/security issue john65 (Jan 05)
- Re: Sendmail 8.11 configuration/security issue Ned Fleming (Jan 03)