Top 2 UNIX vulnerabilities:

1: Buffer Overflows in RPC services
2: Send Mail vulnerabilities

oh no!

Mail servers and HTTP servers are the most saught after targets by prefessional hackers..



but wait! I'm not going to stand here and be bullied by some insomniac with social problems!


!Time for some security!


Chapter 1) Stopping hackers!

First of all a hacker on has access to what you let him/her/it. Since you are running Sendmail I'm guessing you want the world to access it! (unless you only use it to send email)... in this case you should setup your iptables!

IPTables (similar to IPChains) is a network filter, which dictates which packets get into your network.

Also you will want to keep your sendmail updated! whenever an expliot is found, an appropriate fix should come out as soon as possible!


Chapter 2) Stopping spoofers!

Spoofers exist because there are smtp servers on the net which act as 'open-relays'... basically they let anyone send mail. this is not a good idea!






Now don't get me wrong, I'm a complete newb! and I want to learn!


Question 1: How do I setup auth on my smtp server?!

by the way.. the reason this isn't a long post is because I deal with problems as they come, I don't try to approach them all at once

AVOIDING BEING AN OPEN RELAY:

In your etc/mail/access file

DONOT PUT "* RELAY"

Otherwise people will spam from your email server

Not to many people voting in this poll, is there ?

nope

Question 1: How do I setup auth on my smtp server?!
Maybe look at http://www.sendmail.org/~ca/email/auth.html ?
BTW, it's not a regular thing to set up a poll for something like this, and the way you ask your questions (way at the end) might make ppl think this is some kind of tutuorial or something like that...

I don't use sendmail on my servers, so I can't vote.
You really should add an option "yeah right, I left sendmail ages ago for something better"

lol