LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


View Poll Results: Is your SendMail secure?
Heck yeah! I spent hours on it! bring it on! 1 16.67%
I think so...? 5 83.33%
Secure? I thaught linux did that for me 0 0%
I don't need security 0 0%
Voters: 6. You may not vote on this poll

Reply
  Search this Thread
Old 11-25-2003, 11:14 PM   #1
scorpatron
Member
 
Registered: Nov 2003
Location: New Zealand
Distribution: Redhat 9 2.4.20-8 Athlon, Windows 2000 Professional, FreeBSD
Posts: 122

Rep: Reputation: 15
Talking Attention Newbies! Sendmail Security


Top 2 UNIX vulnerabilities:

1: Buffer Overflows in RPC services
2: Send Mail vulnerabilities

oh no!

Mail servers and HTTP servers are the most saught after targets by prefessional hackers..



but wait! I'm not going to stand here and be bullied by some insomniac with social problems!


!Time for some security!


Chapter 1) Stopping hackers!

First of all a hacker on has access to what you let him/her/it. Since you are running Sendmail I'm guessing you want the world to access it! (unless you only use it to send email)... in this case you should setup your iptables!

IPTables (similar to IPChains) is a network filter, which dictates which packets get into your network.

Also you will want to keep your sendmail updated! whenever an expliot is found, an appropriate fix should come out as soon as possible!


Chapter 2) Stopping spoofers!

Spoofers exist because there are smtp servers on the net which act as 'open-relays'... basically they let anyone send mail. this is not a good idea!






Now don't get me wrong, I'm a complete newb! and I want to learn!


Question 1: How do I setup auth on my smtp server?!
 
Old 11-25-2003, 11:19 PM   #2
scorpatron
Member
 
Registered: Nov 2003
Location: New Zealand
Distribution: Redhat 9 2.4.20-8 Athlon, Windows 2000 Professional, FreeBSD
Posts: 122

Original Poster
Rep: Reputation: 15
by the way.. the reason this isn't a long post is because I deal with problems as they come, I don't try to approach them all at once
 
Old 11-27-2003, 03:03 AM   #3
scorpatron
Member
 
Registered: Nov 2003
Location: New Zealand
Distribution: Redhat 9 2.4.20-8 Athlon, Windows 2000 Professional, FreeBSD
Posts: 122

Original Poster
Rep: Reputation: 15
AVOIDING BEING AN OPEN RELAY:

In your etc/mail/access file

DONOT PUT "* RELAY"

Otherwise people will spam from your email server
 
Old 11-27-2003, 04:55 AM   #4
slamp
Member
 
Registered: Oct 2003
Distribution: Mandrake 9.1
Posts: 30

Rep: Reputation: 15
Not to many people voting in this poll, is there ?
 
Old 11-27-2003, 11:30 PM   #5
scorpatron
Member
 
Registered: Nov 2003
Location: New Zealand
Distribution: Redhat 9 2.4.20-8 Athlon, Windows 2000 Professional, FreeBSD
Posts: 122

Original Poster
Rep: Reputation: 15
nope
 
Old 11-27-2003, 11:44 PM   #6
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,415
Blog Entries: 55

Rep: Reputation: 3599Reputation: 3599Reputation: 3599Reputation: 3599Reputation: 3599Reputation: 3599Reputation: 3599Reputation: 3599Reputation: 3599Reputation: 3599Reputation: 3599
Question 1: How do I setup auth on my smtp server?!
Maybe look at http://www.sendmail.org/~ca/email/auth.html ?
BTW, it's not a regular thing to set up a poll for something like this, and the way you ask your questions (way at the end) might make ppl think this is some kind of tutuorial or something like that...
 
Old 11-27-2003, 11:44 PM   #7
iceman47
Senior Member
 
Registered: Oct 2002
Location: Belgium
Distribution: Debian, Free/OpenBSD
Posts: 1,123

Rep: Reputation: 47
I don't use sendmail on my servers, so I can't vote.
You really should add an option "yeah right, I left sendmail ages ago for something better"
 
Old 11-27-2003, 11:53 PM   #8
scorpatron
Member
 
Registered: Nov 2003
Location: New Zealand
Distribution: Redhat 9 2.4.20-8 Athlon, Windows 2000 Professional, FreeBSD
Posts: 122

Original Poster
Rep: Reputation: 15
lol
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Attention Linux Newbies "Baby linux beginners" spider2050 Linux - Newbie 2 08-16-2005 02:23 AM
sendmail and security pippet Linux - Software 3 07-23-2004 12:14 AM
ATTENTION NEWBIES! Good advice for all! Stevetgn Linux - Distributions 19 06-19-2004 05:33 AM
Attention Newbies: Basic Networking scorpatron Linux - Networking 32 12-01-2003 09:55 PM
ATTENTION: OpenBSD Newbies mailing list! sancho5 *BSD 0 04-28-2002 01:16 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 02:25 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration