Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I currently have a Linux 8 RH server running sendmail. This server only takes mail from my firewall, scans it and then relays it directly off to my local mail server on the same local network.
This is ALL this machine does. How can I make sure sendmail and the server is safe from the spammers in this world who like to use it as their own relay??
There are some good apps out there... spamcontrol is one that I use...
Basically you need to monitor your logs, and keep sendmail updated when security holes get filled.
You don't really have to worry about spammers if you aren't an open relay... there is a way to test your server by trying to make it relay mail to or from bogus domains.... google will help you there.
Read up on creating your sendmail.cf file.... there's alot going on there.
Distribution: OpenBSD 4.6, OS X 10.6.2, CentOS 4 & 5
Posts: 3,660
Rep:
If that's all your mail relay is doing, and if you're concerned about security, DITCH SENDMAIL. It's had a horrifying number of severe security flaws over the several decades of it's existence.
Qmail, Postfix, and Exim were all designed as sensible Sendmail replacements. Postfix is probably the most simple to setup and possibly the most secure of the replacements. There are several things you can do in Postfix to lock it down, including dropping dangerous MIME parts (or messages that contain dangerous MIME parts). Refer to the Postfix documentation and do some Googling for details.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.