Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
The strange this is that x.x.x.0/255.255.255.224 format works in /etc/hosts.allow
The only thing that works is
x.x.x RELAY
but this also allow others outside the subnet to send via this server. Another alternative that works is listing all the individual IP addresses which is a pain.
OTOH if it's the format you're looking for it's
<parts you want to match> <errorcode> <message> like in
microsoft.com 550 Go away
microshaft.com OK
123.456.789 OK
123.456.789.133 550 Go away you 133T spammer
Yes, I did do that makemap hash /etc/mail/access < /etc/mail/access
Its just that when I try to allow access to a certain subnet using the format I just mentioned (e.g x.x.x.x/255.255.255.224) it doesn't work.. meaning the it wont allow me to send my mails even though I belong in that IP range. However if I enter (x.x.x ) i.e allowing the whole Class C network, then I can send. However this will also allow others in the particular Class C network to send which I don't want to.
That's why I was wondering if my way of entering those 'rules' are wrong.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.