[luau] Blocking mail relayers

Mike Ballon calzonie at hotmail.com
Wed Sep 25 09:06:00 PDT 2002 

Sendmail does NOT need to be restarted when updating the access file, it
does need to be built of course 'make access.db' but that's it.

I'd like to see a snip of the maillog to see if he was actually being
allowed to relay though.

----- Original Message -----
From: "Erich S." <sharky at websharx.com>
To: <luau at videl.ics.hawaii.edu>
Sent: Wednesday, September 25, 2002 12:45 PM
Subject: RE: [luau] Blocking mail relayers


> Hiya,
>
> Thanks for the response guys!
>
> I think I found the abuse.net test site earlier, and it passed all the
> tests, but I was wondering if somehow this bozo was getting through.
> What's really irritating was that it was coming from that IP every 20
> minutes.
>
> I added the IP to hosts.deny and restarted XINETD. Not sure if that did
> anything.
>
> But adding the ip to the /etc/mail/access file with REJECT and restarting
> sendmail seemed to start denying him *YAY* when I looked in
> /var/log/maillog for entries.
>
> * Does sendmail need to be restarted each time you change the
> /etc/mail/access file? or does it check the file for each email sent?
>
> Florian, is there anywhere I can read up on Cyrus sasl? I'd like to
> learn more about it before I set it up.
>
> Thanks again!
> Sharky
>
>
> On Tue, 24 Sep 2002, Florian Hines wrote:
>
> >I use this test all the time:
> >
> >http://www.abuse.net/relay.html
>
>
>
> On Tue, 24 Sep 2002, Florian Hines wrote:
>
> > You can either
> >
> > add him to hosts.deny,
> >
> > or add
> >
> > his.ip.here. reject
> >
> > to your access file in /etc/mail you can do custom reject messages too.
If
> > its an ISP you know you wont get alot of traffic from just block the
whole
> > ip-block.
> >
> > Best way to kill attempted relaying so is to use Cyrus sasl to do smtp
auth.
> > by adding
> >
> > define(`confAUTH_OPTIONS', `A')dnl
> > TRUST_AUTH_MECH(`DIGEST-MD5 CRAM-MD5 LOGIN PLAIN')dnl
> > define(`confAUTH_MECHANISMS', `DIGEST-MD5 CRAM-MD5 LOGIN PLAIN')dnl
> >
> > to your sendmail.mc file
> >
> > then use
> >
> > [root at NS2 mail]# saslpasswd someuser
> > Password:
> > Again (for verification):
> > [root at NS2 mail]#
> >
> > to add the passwd to the salsdb.
> >
> >
> > I'm assuming you're using sendmail, if its a default RH 7.3 install
cyrus
> > will already be compiled into sendmail other wise you will have to
recompile
> > it with cyrus support.
> >
> > Florian
>
> _______________________________________________
> LUAU mailing list
> LUAU at videl.ics.hawaii.edu
> http://videl.ics.hawaii.edu/mailman/listinfo/luau
>

More information about the LUAU mailing list