Re: Open relay question

[Bob McClure Jr <robertmcclure earthlink net>]

On Mon, May 20, 2002 at 11:46:50AM +0400, Bernard Mwenda wrote:
> hi guys,
> 
> I am using linux 7.2 my server has been blacklisted as an open relay. I need help to secure it. I am using sendmail 8.11
> 
> HELP!
> 
> Bernard

Assuming your server is used to forward outgoing mail from your LAN,
and assuming that you've built the existing /etc/sendmail.cf from
something like /usr/share/sendmail-cf/cf/redhat.mc, you need to add
the line

 FEATURE(`access_db',`hash -o /etc/mail/access.db')dnl

to the .mc file and then rebuild your /etc/sendmail.cf from it.

Then you need to build (or add to) an /etc/mail/access file lines
like:

 192.162.3		RELAY

where the sample address shown refers to the network address of your
LAN.

If your server is not relaying mail from your LAN or accepting
incoming mail, make sure the following line is in your .mc file:

DAEMON_OPTIONS(`Port=smtp,Addr=127.0.0.1, Name=MTA')

That allows SMTP connections only from the server itself.

Note: the preceeding assumes you have the sendmail-cf package and know
how to use it.  If not, let us know, and I'll go into more detail.
You should also get (or have) the sendmail-doc package.  There is a
good bit of documentation of everything in the .mc file in
/use/share/doc/sendmail/README.cf.

Cheers,
-- 
Bob McClure, Jr.            | We have enough youth.
Bobcat Open Systems, Inc.   | How about a fountain of SMART?
robertmcclure earthlink net |