LinuxSA Mailing list archives

Index: [thread] [date] [subject] [author]

  From: Alan Kennington <akenning@dog.topology.org>
  To  : LinuxSA <linuxsa@linuxsa.org.au>
  Date: Thu, 23 Sep 1999 19:17:09 +0930

sendmail problem

Does anyone happen to know what configuration you have
to do the /etc/mail/* files in redhat 5.2 to make
sendmail _not_ do relays on behalf of users outside
my domain?

Strangely, my set-up denies relaying by my own hosts,
but not by outside hosts. This is the resvers to what
I want. It also seems to contradict the RH 5.2 documentation.

Page 349 of the redhat manual, section E.10.2, says
that it should all be fine -- relaying should be off.
But in reality relaying _does_ happen, but only for
the users who should _not_ be able to.

My /etc/mail/relay_allow file is empty.
So is name_allow.

The sendmail.cf file from redhat 5.2 has:

# file containing names of machines which can use our relay
F{LocalNames} /etc/mail/name_allow

--------------------------------------
and it later has.....
--------------------------------------
Scheck_rcpt
# first: get client address
R$+                     $: $(dequote "" $&{client_addr} $) $| $1
R0 $| $*                $@ ok           client_addr is 0 for sendmail -bs
R$={LocalIP}$* $| $*    $@ ok           from here
# next: get client name
R$* $| $+               $: $(dequote "" $&{client_name} $) $| $2
R $| $*                 $@ ok           no client name: directly invoked
#R$- $| $*              $@ ok           for those without full DNS...
R$*$=w $| $*            $@ ok           from here
R$*$={LocalNames} $| $* $@ ok           from allowed system
# now check other side
R$* $| $*               $: $>3 $2
# remove local part
R$*<@$+.>$*             $: $>remove_local $1<@$2.>$3
# still something left?
R$*<@$+>$*              $#error $@ 5.7.1 $: 551 we do not relay
-------------------------------------

The /var/log/maillog file shows clearly that the
check_rcpt rule _is_ invoked, but only on the first
attempt. A second attempt by the outside user
somehow just goes straight through without
running the check_rcpt rule.

This will take me days to debug if no one
recognizes this problem and knows its solution.
Even with the sendmail book, all of the course, the
config files, and the redhat manual etc. etc.,
there's still negligeable info on this.

It looks like RH have devised their own special sendmail.cf
file which is just not documented, as far as I can see.

Cheers,
Alan Kennington.

-- 
Check out the LinuxSA web pages at http://www.linuxsa.org.au/
To unsubscribe from the LinuxSA list:
  mail linuxsa-request@linuxsa.org.au with "unsubscribe" as the subject

Index: [thread] [date] [subject] [author]

Return to the LinuxSA Mailing List Information Page