Date: Sun, 06 Apr 1997 06:49:09 -0500 From: "Jeffrey J. Mountin" <sysop@mixcom.com> To: jadeite <jadeite@light.pomona.edu> Cc: freebsd-questions@freebsd.org Subject: Re: loggin mail port Message-ID: <3.0.32.19970406064908.00bec648@mixcom.com>
next in thread | raw e-mail | index | archive | help
At 03:55 PM 4/5/97 -0800, jadeite wrote: > I'm trying to keep track of people logging into port 25. I had >syslog.conf report the following facilities: >kern.*;lpr.*;mail.*;daemon.*;auth.* but I'm still not informed of telnets >to port 25. In fact the only clue I have is that when I do MAIL FROM: in >smtp I'm told that /etc/aliases.db is out of date (I don't have such a >file, only /etc/aliases, so this is could be an indication that I have >another problem). So, is there something in sendmail.cf that I need to >configured so I'll know when someone telnets to port 25, or did I >configure syslog.conf wrong? Unless mail is sent, there will be no log. SMTP logs under mail.info and is usually /var/log/maillog and is all you really need. We run a proxy and we don't see telnet connects to the port in the log. I can't see any reason why to log this. If nothing is sent this should not be a problem. I'd imagine you could hack sendmail, so when the socket is created it would log to mail.notice, but then how will you tell if it was a normal SMTP transaction or a telnet? Question for hackers I guess. As for the out of date aliases.db, you are supposed to do a 'newaliases' when you change the alias file. ------------------------------------------- Jeff Mountin - System/Network Administrator jeff@mixcom.net MIX Communications Serving the Internet since 1990
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3.0.32.19970406064908.00bec648>