[3242] in RedHat Linux List
Re: Protecting sendmail?
daemon@ATHENA.MIT.EDU (Borg)
Thu Nov 7 18:39:33 1996
Date: Thu, 07 Nov 1996 14:38:37 -0800
From: Borg <"vladimip "@iceonline.com>
To: redhat-list@redhat.com
Resent-From: redhat-list@redhat.com
Reply-To: redhat-list@redhat.com
Marcelo Dantas wrote:
>
> Friends,
>
> Is there any configuration that can be made to sendmail so it
> will only accept connection from machines that belongs to my
> domain.
>
> The problem is that anyone, from anywhere, can log to it and
> generate a "fake mail".
I guess you can prevent outside world from connecting
to your smtp in /etc/hosts.allow and /etc/hosts.deny
somehow, but in this case, no one will be able to send
email to you either.
Most of ISPs work that way that any other host can connect
to them and send email, but it will still be traceable,
not to the person who sent it but to the host from where
it came from:
Received: from iceonline.com (root@ns.iceonline.com [204.191.208.3])
by unix.iceonline.com (8.7.4/8.7.3) with SMTP id PAA11400 for
<vladimip@unix.iceonline.com>; Thu, 7 Nov 1996 15:16:50 -0800 (PST)
Received: from relay2.uunet.net(really [199.183.24.246]) by
iceonline.com via sendmail with smtp id <m0vLcmy-001G06C@iceonline.com>
for <vladimip@iceonline.com>; Thu, 7 Nov 1996 14:19:08 -0800 (PST)
Received: from (president@whitehouse.gov [198.7.0.4] by relay2.uunet.net
(8.7.4/8.7.3) id QAA06248; Thu, 7 Nov 1996 16:52:42 -0500
The above is a random message from someone who pretends
to be <president@whitehouse.gov>, however, if you examine
the headers, you will notice that the message was sent
by someone from panix.com (198.7.0.4) telnetting to
smtp on uunet.
My point is: thousands of Unix-based ISP's work that way
and I don't see why you would want to disable smtp.
--
*** #include <disclaimer.h> ***** Good pings come in small packets
******** Vlad Petersen ********** ********************************
*** <vladimip@iceonline.com> **** **** Linux: OS I can trust *****
******** Vancouver, B.C. ******** ********************************
--
PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
________________________________________________________________________
http://www.redhat.com/RedHat-FAQ http://www.redhat.com/RedHat-Errata
http://www.redhat.com/RedHat-Tips http://www.redhat.com/mailing-lists
------------------------------------------------------------------------
To unsubscribe: mail -s unsubscribe redhat-list-request@redhat.com < /dev/null
