Re: Open Relay? - please help

---

• From: Rick bragg <info@xxxxxxxxx>
• Date: 01 May 2008 01:16:39 GMT

---

On Thu, 01 May 2008 10:35:44 +1000, Res wrote:

On Thu, 30 Apr 2008, Rick bragg wrote:

Hi,

I'm trying to set up my mail server to use smpt-auth, and I have that
working fine, but when I send an email through it without using
authentication, it still goes through. Is there something that I am
missing?

These are some of my settings in my sendmail.mc file:

define

(`confPRIVACY_FLAGS',`noetrn,needmailhelo,noexpn,novrfy,goaway,restrictmailq,needexpnhelo,needvrfyhelo,restrictqrun,restrictexpand,nobodyreturn,authwarnings')

dnl

Thats hell-long, goaway replaces 98% of that line... If your just
trying to be very restricting use: define(`confPRIVACY_FLAGS',
`goaway,restrictqrun,restrictmailq')

You probably being (local?) thereby allowed to relay, if your not sure,
you can try the open relay test at http://its.ausics.net

I cant really help more with auth, because I'm very rusty with it, not
having used it in years, as we only allow our customers to relay and
thats by IP ranges only on cust dedicated outbound smtp boxes.

smtp auth from anywhere is PITA with newbie clients and the risks of
having the MTA's blacklisted through spam increases dramatically.

Thanks for the info,

Right now It is inside a private network so I need to find a good local
port scanner for testing. I accept mail for a number of domains and allow
my clients to get there mail via pop/imap. I would like to use SPF
records in my DNS, so I need to be able to offer a mail server (smtp-
auth) to use for when my clients are on the road.

Does anybody have a sample sendmail.mc as a good starting point? It
seems right now, I can send mail through weather I auth or not...

Thanks again
Rick
.

---

• Follow-Ups:
  • Open Relay? - please help
    • From: Joe Brennan

• References:
  • Open Relay? - please help
    • From: Rick bragg

• Prev by Date: Open Relay? - please help
• Next by Date: Re: Remove Internal Hops from Header
• Previous by thread: Open Relay? - please help
• Next by thread: Open Relay? - please help
• Index(es):
  • Date
  • Thread

---

Relevant Pages Question about sendmail... ... the router at my mail server (or rather, ... to port-forward 25, 143, etc to the mail server). ... I also have several mail clients on my 192.168.1.x network. ... * the clients then try to relay the email with a sender's envelope ... (Fedora) Re: SBS Network and AS400 SMTP Server ... Just reconfig the SBS box to allow relaying for clients on the AS-400s IP ... Allowing users who can AUTH to relay can be dangerous at ... who can guess a username & password can use you as a spam relay. ... (microsoft.public.backoffice.smallbiz) Re: logging auth credentials with messageid ... other way it would relay. ... Maybe the subnet entry in the access file ... with the single line it's not much difference vs discarding the original ... the case of no auth. ... (comp.mail.sendmail) Re: Port 113 requests? ... > that the potential intruder is not provided with any information about their ... If you drop the auth attempts silently, ... it's someone's mail server getting the auth connection ... > and tracking system please see: http://aris.securityfocus.com ... (Incidents) Re: enabled SMTP auth, no longer able to login locally! ... i'm using shadow as my auth mechanism. ... Is sendmail used for relaying which means you call sendmail ... The mail server is in this private ... There are different ways for SMTP AUTH: ... (comp.mail.sendmail)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

newsgroups.derkeiler.com  > Archive  > Comp  > comp.mail.sendmail  > 2008-05