How to prevent sendmail from delivering mail to other systems?

CBMcArthur · 08-01-2007, 04:55 PM

I am in the final stages of building a web server that will be used for a research project. We are desiring to have sendmail running so that services which use it (ie cron) can do so. However, we do not want e-mail to be sent outside of the server (local use only).

I have been unable to successfully find a way to do this. I've tried setting up iptables to block port 25 outbound. I've tried the suggestions in this thread:
http://www.linuxquestions.org/questi...t=77695&page=2.
But I'm still able to send mail to addresses outside of this box successfully.

Are there any thoughts out there?

Vasili · 08-02-2007, 07:57 AM

if u want all ur mails to be internal... well see to it that the dnl of the second line goes away...
from this:

dnl # The following causes sendmail to only listen on the IPv4 loopback address
dnl # 127.0.0.1 and not on any other network devices. Remove the loopback

to this:

dnl # The following causes sendmail to only listen on the IPv4 loopback address
127.0.0.1 and not on any other network devices. Remove the loopback

found in the /etc/mail/sendmail.mc

afterwards
# m4 sendmail.mc > ssendmail.cf

hit me back

CBMcArthur · 08-02-2007, 11:40 AM

Quote:

Originally Posted by Vasili

if u want all ur mails to be internal... well see to it that the dnl of the second line goes away...

to this:

dnl # The following causes sendmail to only listen on the IPv4 loopback address
127.0.0.1 and not on any other network devices. Remove the loopback

This did nothing but cause an error while running `m4` because the line is unrecognized. As it is, from my understanding that line is simply a comment about the next uncommented line regarding deamon options.

linuxjamil · 08-04-2007, 04:29 AM

SO what is the solution your ques plz anubody tell.

CBMcArthur · 08-05-2007, 11:37 AM

Quote:

Originally Posted by linuxjamil

SO what is the solution your ques plz anubody tell.

I'm still unsure how to prevent sendmail from delivering mail outside the server.

Our biggest concern with the box is since it will be a web server, on our network and not fully under the admins control, was to prevent it from being hijacked and used as a spam box. In that respect there were two solutions I found. First, activate safe_mode in PHP and make the mail() function a non-working function. The other was to modify the php.ini to change sendmail as the default mail utility to /dev/null.

So assuming the folks who will be using the box don't go putzing with these settings it'll work out. (Which means I'll have to keep an eye on the box to be sure the settings haven't been changed.)