Date: Mon, 10 Nov 1997 10:56:20 -0800 (PST) From: Sean Eric Fagan <sef@kithrup.com> To: shovey@buffnet.net Cc: questions@FreeBSD.ORG Subject: Re: stopping relays Message-ID: <199711101856.KAA19500@kithrup.com> In-Reply-To: <Pine.BSI.3.95.971110112644.17613A-100000.kithrup.freebsd.questions@buffnet11.buffnet.net>
next in thread | previous in thread | raw e-mail | index | archive | help
In article <Pine.BSI.3.95.971110112644.17613A-100000.kithrup.freebsd.questions@buffnet11.buffnet.net> you write:
>
>I know this was covered before but Ill be dipped if I can find it in the
>search at www.freebsd.org
>
>Can anyone point me to a URL etc of how to stop ones sendmail from being
>used as a spam relay?
I added teh following to the freebsd.mc sendmail config file (in
/usr/src/usr.sbin/sendmail/cf/cf). It disables relaying, and also refuses
mail from sites that are on Paul Vixie's Realtime Blackhole List.
/etc/sendmail.cR has a list of machines that are allowed to relay --
machines for which I serve as a mail host, for example. You should also
have something like
FM-o /etc/sendmail.mxhosts
with a list of machiens for which you supply MX service, but I haven't
verified that. Sorry. (I barely understand sendmail ;).)
LOCAL_CONFIG
FR-o /etc/sendmail.cR
LOCAL_RULESETS
Scheck_rcpt
# anything terminating locally is ok
R< $+ @ $=w > $@ OK
R< $+ @ $=M > $@ OK
R$+ @ $=w $@ OK
R$+ @ $* $=M $@ OK
# Anything originating locally is ok
R$* $: $(dequote "" $&{client_name} $)
R$=w $@ OK
R$=M $@ OK
R$@ $@ OK
# Anything else is bogus
R$* $#error $: "550 Relaying Denied"
Scheck_mail
#
# see if remote host is in the RBL <http://maps.vix.com/rbl/>;
#
R$* $: $(dequote "" $&{client_addr} $)
R$+.$+.$+.$+ $: $[$4.$3.$2.$1.rbl.maps.vix.com$]
R$* . $#error $@ 5.7.1 $: "571 Access by relay [" $&{client_addr} "] DENIED - see http://maps.vix.com/cgi-bin/lookup?" $&{client_addr}
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199711101856.KAA19500>