Checking sendmail.cf file at boot time
Robert L Cochran
cochranb at speakeasy.net
Sat Jul 26 18:03:00 UTC 2003
That is not quite true. Sendmail.cf is not actually regenerated unless
the sendmail.mc file is changed. Make doesn't do anything if there are
no changes to the source. To test this, reboot your machine and check
the date and time of /etc/mail/sendmail.cf. Notice it does not change
from reboot to reboot.
Later this coming week I'll try substituting a sendmail.cf of my own to
see what happens.
Bob
On Sat, 2003-07-26 at 13:41, Chris Ricker wrote:
> On Sat, 26 Jul 2003, Robert L Cochran wrote:
>
> > In an earlier posting I made on the Shrike list, I mentioned it is a
> > good idea to turn off mail relaying in sendmail. Someone responded that
> > the default sendmail implementation from Red Hat only listens for
> > connections on the local host, anyhow, so in effect why bother?
> >
> > The best answer to that is that a substitute sendmail.cf file could be
> > inserted to the system maliciously at some point. You should not just
> > assume that sendmail is running with the actual Red Hat defaults, in
> > other words.
> >
> > Substitution of sendmail.cf can be done without disturbing the
> > /etc/mail/sendmail.mc file. Then restart sendmail. Presto! Without quite
> > realizing it, the user's sendmail is listening for connections and is
> > suddenly an open relay.
>
> Nope. Read /etc/init.d/sendmail and /etc/mail/Makefile. On RH, sendmail.cf
> is automatically generated every time the daemon is restarted.
>
> later,
> chris
>
>
> --
> Rhl-beta-list mailing list
> Rhl-beta-list at redhat.com
> http://www.redhat.com/mailman/listinfo/rhl-beta-list
--
Need help with computer hardware or software? I can take care of it in
your home at very reasonable cost.
Bob Cochran
Greenbelt, Maryland, USA
http://www.greenbeltcomputer.biz/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/fedora-test-list/attachments/20030726/661ee5ca/attachment.sig>
More information about the fedora-test-list
mailing list