From owner-freebsd-questions@FreeBSD.ORG Fri Apr 26 15:55:27 2013 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by hub.freebsd.org (Postfix) with ESMTP id DD3DD6F8 for ; Fri, 26 Apr 2013 15:55:27 +0000 (UTC) (envelope-from jflowers@ezo.net) Received: from mbox2.ezo.net (mbox2.ezo.net [69.36.15.166]) by mx1.freebsd.org (Postfix) with ESMTP id C1D56102D for ; Fri, 26 Apr 2013 15:55:27 +0000 (UTC) Received: from ezo.net (localhost.ezo.net [127.0.0.1]) by mbox2.ezo.net (Postfix) with ESMTP id F344628794 for ; Fri, 26 Apr 2013 11:51:03 -0400 (EDT) From: "jflowers" To: freebsd-questions@freebsd.org Subject: Sendmail 8.14.5/8.14.5 on fbsd-9.1R (EC2) Date: Fri, 26 Apr 2013 11:51:03 -0400 Message-Id: <20130426153728.M27769@ezo.net> X-Mailer: OpenWebMail 2.52 20060502 X-OriginatingIP: 108.90.92.209 (jflowers@ezo.net) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 26 Apr 2013 15:55:27 -0000 All I want to do is have the MTA listen on 127.0.0.1 port 1025 and have no sendmail process listen on the server interface. That's being done by assp which proxies messages to 127.0.0.1:1025. Unfortunately, I haven't been able to figure out how to turn off the default. Sockstat shows: root sendmail 1672 4 tcp4 *:25 *:* root sendmail 1672 5 tcp6 *:25 *:* root sendmail 1672 6 tcp4 127.0.0.1:1025 *:* root sendmail 1672 7 tcp4 111.222.333.444:587 *:* The relevant mc entries are: DAEMON_OPTIONS(`Name=IPv4, Family=inet') DAEMON_OPTIONS(`Name=IPv6, Family=inet6, Modifiers=O') DAEMON_OPTIONS(`Port=1025, Addr=127.0.0.1, Name=MTA') VIRTUSER_DOMAIN_FILE(`/etc/mail/virtual-domains') FEATURE(`no_default_msa') DAEMON_OPTIONS(`Port=587, Addr= 111.222.333.444, Name=MSA, M=E') The MSA isn't strictly necessary now but I thought might have a future use. So, what am I missing? How do I turn *:25 off so that when assp goes down (as it frequently does) I'm not running an open relay (all user/domain validation is done in assp). Any pointers in the right direction appreciated. Thanks -- Jim Flowers