Firewalls: Re: sendmail-8.8.8

Firewalls
(November 1997)

Indexed By Thread: [Previous] [Next]

Subject:	Re: sendmail-8.8.8
From:	Fyodor <fygrave @ freenet . bishkek . su>
Date:	Thu, 27 Nov 1997 16:03:28 +0600 (GMT+0500)
To:	Norman Widders <winspace @ geko . net . au>
Cc:	Firewalls @ GreatCircle . COM
In-reply-to:	<Paladin.2.31.WIN32.880555550-593917318019201.beethoven>
Reply-to:	fygrave @ usa . net

> # prevent people using the EXPN and VRFY commands
> O PrivacyOptions=goaway

is it implemented in 8.8.8 sendmail only?


> # to use tcp-wrappers and hosts.allow / hosts.deny, recompile after
> # modifying the makefile in sendmail-8.8.8/src/Makefiles/Makefile.your-os
> LIBS= -lwrap
> ENVDEF= -DTCPWRAPPERS
> 
> 
> /etc/hosts.allow
> sendmail: .your.domain EXCEPT spam.net

will those two changes reject SMTP connections from spam.net hosts?
hmm.. would it work with 8.8.6/8.7.3 sendmail?

hmm.. and i am surprised it would work, if you run sendmail as daemon. 
AFAiK hosts.allow|deny files are used by inetd. daemon for checkin' its 
services.. or i am mistaking here?

> #remove the version number, obscurity 
> O SmtpGreetingMessage=$j Mailer ; $b

yeah, usually helps to fool intruders about your Sendmail version.



---
   Fyodor Yarochkin			email:fygrave @
 usa .
 net
  http://www.tigerteam.net/linuxgroup/	tel:(3312) 474465
 "Optima philosophia et sapientia est meditatio mortis."

Follow-Ups:

Re: sendmail-8.8.8
From: "Norman Widders" <winspace @ geko . net . au>

References:

sendmail-8.8.8
From: "Norman Widders" <winspace @ geko . net . au>

Indexed By Date	Previous:	Re: FireWall Questions. From: Fyodor <fygrave @ freenet . bishkek . su>
Indexed By Date	Next:	Re: FireWall Questions. From: Fyodor <fygrave @ freenet . bishkek . su>
Indexed By Thread	Previous:	sendmail-8.8.8 From: "Norman Widders" <winspace @ geko . net . au>
Indexed By Thread	Next:	Re: sendmail-8.8.8 From: "Norman Widders" <winspace @ geko . net . au>