[luau] Blocking mail relayers
Erich S.
sharky at websharx.com
Wed Sep 25 08:43:01 PDT 2002
Hiya,
Thanks for the response guys!
I think I found the abuse.net test site earlier, and it passed all the
tests, but I was wondering if somehow this bozo was getting through.
What's really irritating was that it was coming from that IP every 20
minutes.
I added the IP to hosts.deny and restarted XINETD. Not sure if that did
anything.
But adding the ip to the /etc/mail/access file with REJECT and restarting
sendmail seemed to start denying him *YAY* when I looked in
/var/log/maillog for entries.
* Does sendmail need to be restarted each time you change the
/etc/mail/access file? or does it check the file for each email sent?
Florian, is there anywhere I can read up on Cyrus sasl? I'd like to
learn more about it before I set it up.
Thanks again!
Sharky
On Tue, 24 Sep 2002, Florian Hines wrote:
>I use this test all the time:
>
>http://www.abuse.net/relay.html
On Tue, 24 Sep 2002, Florian Hines wrote:
> You can either
>
> add him to hosts.deny,
>
> or add
>
> his.ip.here. reject
>
> to your access file in /etc/mail you can do custom reject messages too. If
> its an ISP you know you wont get alot of traffic from just block the whole
> ip-block.
>
> Best way to kill attempted relaying so is to use Cyrus sasl to do smtp auth.
> by adding
>
> define(`confAUTH_OPTIONS', `A')dnl
> TRUST_AUTH_MECH(`DIGEST-MD5 CRAM-MD5 LOGIN PLAIN')dnl
> define(`confAUTH_MECHANISMS', `DIGEST-MD5 CRAM-MD5 LOGIN PLAIN')dnl
>
> to your sendmail.mc file
>
> then use
>
> [root at NS2 mail]# saslpasswd someuser
> Password:
> Again (for verification):
> [root at NS2 mail]#
>
> to add the passwd to the salsdb.
>
>
> I'm assuming you're using sendmail, if its a default RH 7.3 install cyrus
> will already be compiled into sendmail other wise you will have to recompile
> it with cyrus support.
>
> Florian
More information about the LUAU
mailing list