From owner-freebsd-questions@FreeBSD.ORG Mon May 21 23:31:52 2007 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 1297816A400 for ; Mon, 21 May 2007 23:31:52 +0000 (UTC) (envelope-from mikhailg@webanoide.org) Received: from shanshito.webanoide.org (shanshito.webanoide.org [150.101.108.110]) by mx1.freebsd.org (Postfix) with ESMTP id C3D2713C46E for ; Mon, 21 May 2007 23:31:50 +0000 (UTC) (envelope-from mikhailg@webanoide.org) Received: from maxito.hba.navalradio.cl (maxito.hba.navalradio.cl [172.26.4.34]) (authenticated bits=0) by shanshito.webanoide.org (8.13.8/8.13.8) with ESMTP id l4LNVjCd010509 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Mon, 21 May 2007 23:31:48 GMT (envelope-from mikhailg@webanoide.org) Message-ID: <46522BE0.4080407@webanoide.org> Date: Tue, 22 May 2007 09:31:44 +1000 From: Mikhail Goriachev Organization: Webanoide User-Agent: Thunderbird 2.0.0.0 (Macintosh/20070326) MIME-Version: 1.0 To: Maxim Khitrov References: <26ddd1750705211537j78ed83fdm921f7f5e5df5c4@mail.gmail.com> In-Reply-To: <26ddd1750705211537j78ed83fdm921f7f5e5df5c4@mail.gmail.com> Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Cc: freebsd-questions@freebsd.org Subject: Re: Sendmail ignores hosts.allow X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 21 May 2007 23:31:52 -0000 Maxim Khitrov wrote: > Hello, > > I'm trying to restrict access to sendmail via hosts.allow. Don't need > a firewall, since I just want to block everyone but the localhost from > sending e-mail out. Anyway, it seems that sendmail ignores these > settings even though it was compiled with TCPWRAPPERS. I added > "sendmail : all : deny" as the very first line in hosts.allow, just to > see if it will let me connect from anywhere. It does - not just from > localhost, but from all remote locations as well. I have no problems > connecting and sending e-mail. Am I missing something? I followed your earlier thread (hopefully this is a related topic). This is strange. By default, sendmail is disabled. You don't even have to put anything into rc.conf: # grep sendmail /etc/defaults/rc.conf Sendmail listens and accepts local mail only. You can't connect to it from another machine: # telnet some.host.tld 25 Trying 1.2.3.4... telnet: connect to address 1.2.3.4: Connection refused telnet: Unable to connect to remote host You must've tweaked something to make it behave differently. > I tested the same setup with sshd, and that works properly. After a > quick search on google it seems that I'm not the only one with this > problem, but I couldn't find any solution to this. Any help is greatly > appreciated. Share with us your testing methodology. From previous thread, I understand that you just want something to submit your local mail (from daemons, scripts, etc). Then as others already said, a simple alias in /etc/mail/aliases and executing newaliases is sufficient. Regards, Mikhail. -- Mikhail Goriachev Webanoide Telephone: +61 (0)3 62252501 Mobile Phone: +61 (0)4 38255158 E-Mail: mikhailg@webanoide.org Web: www.webanoide.org