Sendmail does NOT need to be restarted when updating the access file, it does need to be built of course 'make access.db' but that's it.
I'd like to see a snip of the maillog to see if he was actually being allowed to relay though. ----- Original Message ----- From: "Erich S." <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, September 25, 2002 12:45 PM Subject: RE: [luau] Blocking mail relayers > Hiya, > > Thanks for the response guys! > > I think I found the abuse.net test site earlier, and it passed all the > tests, but I was wondering if somehow this bozo was getting through. > What's really irritating was that it was coming from that IP every 20 > minutes. > > I added the IP to hosts.deny and restarted XINETD. Not sure if that did > anything. > > But adding the ip to the /etc/mail/access file with REJECT and restarting > sendmail seemed to start denying him *YAY* when I looked in > /var/log/maillog for entries. > > * Does sendmail need to be restarted each time you change the > /etc/mail/access file? or does it check the file for each email sent? > > Florian, is there anywhere I can read up on Cyrus sasl? I'd like to > learn more about it before I set it up. > > Thanks again! > Sharky > > > On Tue, 24 Sep 2002, Florian Hines wrote: > > >I use this test all the time: > > > >http://www.abuse.net/relay.html > > > > On Tue, 24 Sep 2002, Florian Hines wrote: > > > You can either > > > > add him to hosts.deny, > > > > or add > > > > his.ip.here. reject > > > > to your access file in /etc/mail you can do custom reject messages too. If > > its an ISP you know you wont get alot of traffic from just block the whole > > ip-block. > > > > Best way to kill attempted relaying so is to use Cyrus sasl to do smtp auth. > > by adding > > > > define(`confAUTH_OPTIONS', `A')dnl > > TRUST_AUTH_MECH(`DIGEST-MD5 CRAM-MD5 LOGIN PLAIN')dnl > > define(`confAUTH_MECHANISMS', `DIGEST-MD5 CRAM-MD5 LOGIN PLAIN')dnl > > > > to your sendmail.mc file > > > > then use > > > > [EMAIL PROTECTED] mail]# saslpasswd someuser > > Password: > > Again (for verification): > > [EMAIL PROTECTED] mail]# > > > > to add the passwd to the salsdb. > > > > > > I'm assuming you're using sendmail, if its a default RH 7.3 install cyrus > > will already be compiled into sendmail other wise you will have to recompile > > it with cyrus support. > > > > Florian > > _______________________________________________ > LUAU mailing list > [EMAIL PROTECTED] > http://videl.ics.hawaii.edu/mailman/listinfo/luau >
