Restricting is not so easy via firewall

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Yes Chris,

i would be easy, but impossible. My users sometimes trawell and act as different IP and sendmail
box have no public IP, it is masquraded, and it communicate with world via SNAT/DNAT hole in
iptables, so all world act as one IP, the IP of NAT/box... :)

TP

--- "C.W.L. Hoogenboezem" <root@digitalcraze.nl> wrote:
> Tomasz,
> 
> Why don't you restrict sendmail-access to that machine? You might want to
> take this into consideration -- especially if the sendmail daemon serves a
> not too big number of users.
> 
> Regards,
> Chris
> 
> ----- Original Message -----
> From: "Tomasz Popik" <popikt@yahoo.com>
> To: "Security Discuss" <security-discuss@linuxsecurity.com>
> Sent: Thursday, January 30, 2003 3:48 PM
> Subject: Spam stopping
> 
> 
> > I will continue disscusion about spamimg.
> >
> > That is easy, sendmail listen for incoming connections on port 25. How to
> find out, if connection
> > is made from other host/sendmail, or connection is made from mail client?
> Connections to my mail
> > server is redirected throug firewall, and this gives one fault. Sendmail
> do not know real IP
> > address, for sendmail all connections comes from 192.168.0.2. That all. So
> I cant recompile
> > sendmail and add feature POP before SMTP because, this methode simply is
> based on IP loging. So
> > this is completly rabish because all conneciton is from one IP. So does
> anyone know how to check
> > if connections is for tranporting mail beatwen sendmail or not. And next
> how to block connections
> > form mail clients, or how to authorize it? So far, i have help my self,
> and remove from
> > /etc/mail/access the 192.168.0.2 RELAY record, and that help me to stop
> spaming and be an open
> > relay. But this shut down ability to remote clients, who are allowed,
> check their mail. How do it?
> >
> > I have wathed long time the /var/log/maillog and there is diference, form
> connections. So i have
> > prove that sendmail is able to examine from who is connection made.
> >
> > Thanks.
> >
> >
> > __________________________________________________
> > Do you Yahoo!?
> > Yahoo! Mail Plus - Powerful. Affordable. Sign up now.
> > http://mailplus.yahoo.com
> > ------------------------------------------------------------------------
> >      To unsubscribe email security-discuss-request@linuxsecurity.com
> >          with "unsubscribe" in the subject of the message.
> >
> 
> ------------------------------------------------------------------------
>      To unsubscribe email security-discuss-request@linuxsecurity.com
>          with "unsubscribe" in the subject of the message.
> 

__________________________________________________
Do you Yahoo!?
Yahoo! Mail Plus - Powerful. Affordable. Sign up now.
http://mailplus.yahoo.com
------------------------------------------------------------------------
     To unsubscribe email security-discuss-request@linuxsecurity.com
         with "unsubscribe" in the subject of the message.


[Index of Archives]     [Fedora Announce]     [Linux Crypto]     [Kernel]     [Netfilter]     [Bugtraq]     [USB]     [Fedora Security]

  Powered by Linux