LinuxQuestions.org
Latest LQ Deal: Latest LQ Deals
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page Relaying through Sendmail
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 07-21-2003, 04:39 PM   #1
markstevens
Member
 
Registered: Jun 2003
Posts: 86

Rep: Reputation: 15
Relaying through Sendmail

I am runnning Sendmail on Redhat 9 and now the boss wants to be able to send mail while he is on a business trip. Currently we allow internal machines to relay based on the allow list.

What is the best method for doing this?

There must be an easy solution without opening the machine to be an open relay which would have us on every black list within 24 hours.

My skill level is self taught and somewhere around novice to some experience.

Any ideas?

As a mail client we use Eudora 5.2 (and some idiots use Outlook.)
 
Old 07-21-2003, 04:42 PM   #2
BlackMage
LQ Newbie
 
Registered: Jul 2003
Distribution: Slackware 9.0
Posts: 25

Rep: Reputation: 15
Require him to SSH into the machine, and login before he can use it. Should be secure enough.
 
Old 07-21-2003, 04:42 PM   #3
fancypiper
LQ Guru
 
Registered: Feb 2003
Location: Sparta, NC USA
Distribution: Ubuntu 10.04
Posts: 5,141

Rep: Reputation: 60
# Common e-mail tools
sendmail - postfix - sends mail to local users (and internet when configured correctly)
fetchmail - gets mail from internet accounts (non-Hotmail type)
procmail - sorts and delivers into separate mailboxes
mutt - mail client that sucks less than all the others
Email the Linux Way
Suresh Ramasubramanian's email guide
The Linux Mail User HOWTO
The Linux Electronic Mail Administrator HOWTO
SquirrelMail web mail
Why use Hotmail when there is LinuxMail?
Gotmail, a utility to download mail from Hotmail type accounts

A file I found on Suresh Ramasubramanian's email guide:
Code:
divert(-1)
dnl This is the macro config file used to generate sendmail.cf
dnl file. If you modify this file you will have to regenerate 
dnl sendmail.cf by running this macro config through the m4
dnl preprocessor:
dnl
dnl        m4 /home/phil/Documents/sendmail.mc > /etc/sendmail.cf <--Change to your path
dnl
dnl You will need to have the sendmail-cf RPM installed for this
dnl to work, if you use an rpm build of sendmail
dnl
dnl include(`../m4/cf.m4')
dnl
dnl If you compile sendmail from a tarball, use the include above.
dnl In this setup, you should create the file as cf/cf/config.mc 
dnl (in the sendmail source tree: eg. /usr/src/sendmail-8.11.6/cf/cf
dnl Now give the command "sh Build config.cf".  Now copy the file
dnl config.cf as /etc/mail/sendmail.cf (please backup first!)
dnl
dnl If you are using the RPM build of sendmail, use the 
dnl include statement given below instead
dnl
include(`/usr/share/sendmail-cf/m4/cf.m4')
define(`confDEF_USER_ID',``8:12'')
OSTYPE(`linux')
undefine(`UUCP_RELAY')
undefine(`BITNET_RELAY')
define(`confCF_VERSION',`dialup-1.3')
define(`SMART_HOST', `smtp.yourisp.com') <--Change this
define(`confAUTO_REBUILD')
define(`confTO_CONNECT', `1m')
define(`confTO_IDENT',0)
define(`confTRY_NULL_MX_LIST',true)
define(`confDONT_PROBE_INTERFACES',true)
define(`confCON_EXPENSIVE',true)
define(`confDELIVERY_MODE', `queued')
define(`PROCMAIL_MAILER_PATH',`/usr/bin/procmail')
define(`ALIAS_FILE',`/etc/mail/aliases')
MASQUERADE_AS(`yourisp.com') <--Change this
FEATURE(`masquerade_envelope')
FEATURE(`smrsh',`/usr/sbin/smrsh')
FEATURE(`mailertable',`hash -o /etc/mail/mailertable')
FEATURE(`virtusertable',`hash -o /etc/mail/virtusertable')
FEATURE(redirect)
FEATURE(always_add_domain)
FEATURE(use_cw_file)
FEATURE(`use_ct_file')
FEATURE(local_procmail)
MAILER(smtp)
MAILER(procmail)
FEATURE(`access_db')
FEATURE(`blacklist_recipients')
FEATURE(`accept_unresolvable_domains')
FEATURE(`accept_unqualified_senders')
dnl FEATURE(`relay_based_on_MX')

# Redhat links
RedHat Linux Manuals
Get your mp3 support here
Maximum RPM
rpmfind
Easier software management: apt4rpm - Red Carpet
RedHat 8.0 Tips & Tricks

# Redhat 7.3 down configuration commands
setup leads to several configuration tools

# Redhat 7.3 up configuration commands
Configure soundcard:
redhat-config-soundcard
Configure X server:
redhat-config-xfree86
Configure network:
redhat-config-network
Manage software:
redhat-config-packages

# Handling NTFS
New Technology FileSystem (NTFS) HOWTOs
Linux NTFS project
 
Old 07-21-2003, 09:53 PM   #4
cxel91a
Member
 
Registered: May 2001
Posts: 61

Rep: Reputation: 15
Relay his ISP domain
 
Old 07-22-2003, 08:12 AM   #5
markstevens
Member
 
Registered: Jun 2003
Posts: 86

Original Poster
Rep: Reputation: 15
Thanks for the replies.

A few responses with questions.

He can SSH now but he wants to be able to use his eudora or aol account to send the e-mail.

His external or roaming isp is AOL and I will not relay AOL mail... That would be very bad.

Yes I guess I could read all of those how to pages.... but I am totally swamped and do not have the time.

Can I use SSL to do this? I know Eudora has an option for SSL on checking and sending... but I have no idea how to start with the SSL issue. Will that also affect my normal HTTP site? which we someday hope to convert to HTTPS but not yet.

Anyone? Anymore ideas?
 
Old 07-22-2003, 09:00 AM   #6
rodriguez-v
LQ Newbie
 
Registered: Jul 2003
Posts: 14

Rep: Reputation: 0
Please read my post under SOFTWARE forum.
 
Old 09-10-2003, 11:38 PM   #7
Sticky Toejam
LQ Newbie
 
Registered: Sep 2003
Posts: 17

Rep: Reputation: 0
Google for "POP before SMTP" and DRAC. What happens is when a user "pops" his mail from your unix box the incoming IP address is added to a list similar to /etc/mail/access. This (incoming laptop IP address) will be good for 30 minutes (configurable) and then they'll need to pop again. The downside is that they have to pop to your unix box. If they don't have an account on it you will need to create one for them for just this purpose.

For large networks DRAC is the better option.

http://popbsmtp.sourceforge.net/
http://www.iecc.com/pop-before-smtp.html
http://mail.cc.umanitoba.ca/drac/
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Sendmail Relaying R4z0r Linux - Networking 2 10-03-2004 02:15 PM
relaying in sendmail spikes57 Linux - Networking 6 02-27-2004 10:44 AM
Sendmail relaying SchoolITguy Linux - Networking 0 10-18-2002 06:17 PM
sendmail relaying atin Linux - Software 1 10-01-2002 10:21 AM
Sendmail 8.11 relaying?? magyartoth Linux - General 3 04-29-2002 03:24 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 08:20 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration