From owner-freebsd-questions@FreeBSD.ORG Fri Sep 19 22:19:08 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 58B8216A4B3 for ; Fri, 19 Sep 2003 22:19:08 -0700 (PDT) Received: from asarian-host.net (mail.asarian-host.net [194.109.160.70]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1CC2743FE1 for ; Fri, 19 Sep 2003 22:19:05 -0700 (PDT) (envelope-from admin@asarian-host.net) Comments: To protect the identity of the sender, certain header fields are either not shown, or masked. Anonymous email accounts can be requested by filling in the appropriate form at: https://asarian-host.net/cgi-bin/signup.cgi Received: (from root@localhost) by mail.asarian-host.net (8.12.10/8.12.10) id h8K5J44A099294 for freebsd-questions@freebsd.org; Sat, 20 Sep 2003 07:19:04 +0200 (CEST) (envelope-from admin@asarian-host.net) From: Mark Message-Id: <200309200519.H8K5J3DS099268@asarian-host.net> Date: Sat, 20 Sep 2003 05:19:04 GMT X-Authenticated-Sender: admin@asarian-host.net X-Trace: 3J+9Y1BgkY6Xtm+rzH4uF4ohGD8hGjwFzKJgoZHo4HafAcjmBOGp5gf6nIerlrMMCShM1RJ4oPaXQcUllOhvJA== X-Complaints-To: abuse@asarian-host.net X-Abuse-Info: Please be sure to forward a copy of ALL headers X-Abuse-Info: Otherwise we are unable to process your complaint Organization: Asarian-host To: "Greg 'groggy' Lehey" References: <200309190044.H8J0IU5M025025@asarian-host.net> <200309190056.H8J0U35M025526@asarian-host.net> <20030919025620.GT37023@wantadilla.lemis.com> <200309190320.H8J3KL5M031529@asarian-host.net> <20030920023245.GA16686@wantadilla.lemis.com> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2800.1165 X-Auth: Asarian-host PGP signature iQEVAwUAP2vjSDFqW1BleBN9AQGOYAf/S3fpc2Ocj8S2sqXtY+AMKDnwo8pi4ye3 N0YtQfuB4F5ikaSbpF8d3CxDM58I5YTfHIQJksJ58NGIC7B9x7+JDrLp2OQbpJUt MMOdTEvQOl8aCpg6MQNsyR4c7Dv7cXxido4A+ZX9JZ3uEvfS7MjfJC4CqrwuoVdL cmI+PMRNtBra1TnT+K6r8Xi51W67dKVRZpDgu3UzF5sSKwO2YhBrPZRrzNjAp0sm Sdq7LOvfsqlTm7H88L2FQif69pzOeUrMw5IuXHe/aXWVHq1MsJaw56D6pmtJ0ik8 HIiyY1hKUWCwNANpxKtad9K0oL6Oc0zcdzX/kXJEqKMroVaDXW8yEA== =9/xL cc: freebsd-questions@freebsd.org Subject: Re: "May be forged"? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 20 Sep 2003 05:19:08 -0000 > On Friday, 19 September 2003 at 3:20:21 +0000, Mark wrote: > > > On Friday, September 19, 2003 2:44 AM, Mark wrote: > > > >>>> Thanks to Kris I found the new sendmail. :) But a slight anomaly > >>>> occurs in> 8.12.10: > >>>> > >>>> AUTH=server, relay=my-xp-machine.net [192.168.1.3] (may be forged), > >>>> authid=admin > >>>> > >>>> That is odd; why would it suddenly say "may be forged"? > >>> > >>> Hmm, this wouldn't, by any chance, have anything to do with Verisign's > >>> latest DNS crap, would it? Kinda like a preemptive caution that a > >>> "net" domain might be fake? > >> > >> No, this is the result of a failed reverse DNS lookup or a failed > >> consistency check between forward and reverse DNS. Given that the > >> address is in the non-routable RFC 1918 range, this is to be expected. > > > > Then why does it not occur in 8.12.9? If I start my 8.12.9 sendmail, it > > does NOT say "may be forged". Did something change in-between versions? > > It would seem so. > > > Here is why I think it seems related to Verisign somehow: > > > > asarian-host: {root} % nslookup my-xp-machine.net > > Name: my-xp-machine.net > > Address: 64.94.110.11 > > Ah. But this is an invalid domain. Yes, it is the name of my XP machine within the network. :) > > But that still does not explain why my 8.12.9 sendmail does not say > > "may be forged". And if I change /etc/hosts to have 192.168.1.3 > > called "my-xp-machine.ORG", then the error goes away, in 8.12.10 > > too! > > Yes, that's a feature, not a bug. I do not quite understand this. Why would it not say "may be forged" when de domain name ends in .org? At any rate, I installed 8.12.10 now, changed the name of my XP machine to end in .org; and, for the rest, everything seems to work wonderfully. So, whatever that small change between versions may have been, it must be a minor thing. I just wanted to make sure I had not compiled the new sendmail horribly wrong. Everything is ok now. :) Thanks for your help, - Mark