From owner-freebsd-stable Thu Jan 6 11:52:40 2000 Delivered-To: freebsd-stable@freebsd.org Received: from pau-amma.whistle.com (pau-amma.whistle.com [207.76.205.64]) by hub.freebsd.org (Postfix) with ESMTP id D5A6E14CE5 for ; Thu, 6 Jan 2000 11:52:32 -0800 (PST) (envelope-from dhw@whistle.com) Received: (from dhw@localhost) by pau-amma.whistle.com (8.9.2/8.9.2) id LAA11979; Thu, 6 Jan 2000 11:52:27 -0800 (PST) Date: Thu, 6 Jan 2000 11:52:27 -0800 (PST) From: David Wolfskill Message-Id: <200001061952.LAA11979@pau-amma.whistle.com> To: mitayai@bricsnet.com Subject: RE: Sendmail, 3.3-STABLE, relaying Cc: freebsd-stable@FreeBSD.ORG In-Reply-To: Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG >From: "Will Mitayai Keeso Rowe" >Date: Thu, 6 Jan 2000 14:43:19 -0500 >ok, so how would i deny access to an entire C-Class? Quoting from /usr/src/contrib/sendmail/cf/README, beginning at line 1276: An ``access'' database can be created to accept or reject mail from selected domains. For example, you may choose to reject all mail originating from known spammers. To enable such a database, use FEATURE(access_db) The FEATURE macro can accept a second parameter giving the key file definition for the database; for example FEATURE(access_db, hash -o /etc/mail/access) Remember, since /etc/mail/access is a database, after creating the text file as described below, you must use makemap to create the database map. For example: makemap hash /etc/mail/access < /etc/mail/access The table itself uses e-mail addresses, domain names, and network numbers as keys. For example, spammer@aol.com REJECT cyberspammer.com REJECT 192.168.212 REJECT would refuse mail from spammer@aol.com, any user from cyberspammer.com (or any host within the cyberspammer.com domain), and any host on the 192.168.212.* network. The value part of the map can contain: OK Accept mail even if other rules in the running ruleset would reject it, for example, if the domain name is unresolvable. RELAY Accept mail addressed to the indicated domain or received from the indicated domain for relaying through your SMTP server. RELAY also serves as an implicit OK for the other checks. REJECT Reject the sender or recipient with a general purpose message. DISCARD Discard the message completely using the .... Please note that the example given would cause attempts to establish a SMTP connection form anywhere in the class C 192.168.212.0/24 to be rejected (as the quoted text indicates). Cheers, david -- David Wolfskill dhw@whistle.com UNIX System Administrator voice: (650) 577-7158 pager: (888) 347-0197 FAX: (650) 372-5915 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message