From owner-freebsd-audit Fri Mar 24 15:40:14 2000 Delivered-To: freebsd-audit@freebsd.org Received: from trinity.skynet.be (trinity.skynet.be [195.238.2.38]) by hub.freebsd.org (Postfix) with ESMTP id F241937B5B2 for ; Fri, 24 Mar 2000 15:40:12 -0800 (PST) (envelope-from blk@skynet.be) Received: from [194.78.234.186] (dialup1722.brussels.skynet.be [194.78.234.186]) by trinity.skynet.be (Postfix) with ESMTP id 25B2718150; Sat, 25 Mar 2000 00:39:54 +0100 (MET) Mime-Version: 1.0 X-Sender: blk@pop.skynet.be Message-Id: In-Reply-To: References: Date: Fri, 24 Mar 2000 23:55:38 +0100 To: Garance A Drosihn , Robert Watson , Bob Johnson From: Brad Knowles Subject: Re: Portmapper enabled, IPv6 circumvents FW Cc: Warner Losh , audit@FreeBSD.ORG Content-Type: text/plain; charset="us-ascii" ; format="flowed" Sender: owner-freebsd-audit@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG At 12:07 PM -0500 2000/3/24, Garance A Drosihn wrote: > I don't know what knobs freebsd has for sendmail, but perhaps > we could have a similar option there. Setup sendmail so people > can 'mail' other people (running sendmail via crontab to empty > out any pending messages), but not accept mail? I am not sure > that is a really good idea though... rc.conf has default flags to pass to the sendmail daemon, if you're going to start it up. I suggest leaving off "-bd" by default, so that it will fire off queue runners when necessary, but won't listen to port 25 unless this option is specifically added. -- These are my opinions -- not to be taken as official Skynet policy ====================================================================== Brad Knowles, || Belgacom Skynet SA/NV Systems Architect, Mail/News/FTP/Proxy Admin || Rue Colonel Bourg, 124 Phone/Fax: +32-2-706.13.11/12.49 || B-1140 Brussels http://www.skynet.be || Belgium To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-audit" in the body of the message