Can't help you with the FW-1 digest, sorry. But in regards to your
sendmail question:
It is a good idea(tm) to turn off the sendmail commands EXPN and VRFY
because they can be used by potential intruders to either gain access to
your system or gain more targets for a possible attack. To turn these off
you need to edit your /etc/sendmail.cf file. Add this line:
O novrfy, noexpn
That will turn off VRFY and EXPN on sendmail 8.7.x .
You might also want to add the need/helo commands (ie needmailhelo,
needvrfyhelo, needexpnhelo) so that the requester will at least have to
identify himself (or his proxy) before attempting to access your mail
daemon.
Rich
On Fri, 6 Dec 1996 toon @
cem-bb .
e-mail .
com wrote:
>
> Hi firewall-people,
>
> Some time ago I read in this list about the firewall-1 mailing list
> at applicom.co.il. I subscribed to the digest version. This was
> confirmed but I do not get any messages.
> At the Checkpoint site, a nice webpage tells me to try again later
> when I try to look at some maillist info.
> My question: Is there uberhaupt a firewall-1 mailinglist or not?
>
> Next topic:
>
> Some1 told me that 'I have to filter out VERIFY and EXPAND when letting
> mail through my firewall'. Can some1 explain me what this means?
>
> Hear from you in the next digest,
> Toon
>
> N.B. If I read any more messages in this list about IRINIA or some
> other GOOD TIMES I will punish you all by trying to unsubscribe from
> this list and sending messages that I can not get off the list (-:
>
References:
|
|
