From owner-freebsd-stable  Sun Nov 25 16:21:42 2001
Delivered-To: freebsd-stable@freebsd.org
Received: from jochem.dyndns.org (cc40670-a.groni1.gr.nl.home.com [217.120.131.23])
	by hub.freebsd.org (Postfix) with ESMTP id D9D9837B417
	for <freebsd-stable@FreeBSD.ORG>; Sun, 25 Nov 2001 16:21:36 -0800 (PST)
Received: (from jochem@localhost)
	by jochem.dyndns.org (8.11.6/8.11.6) id fAQ0LGd49733;
	Mon, 26 Nov 2001 01:21:16 +0100 (CET)
	(envelope-from jochem)
Date: Mon, 26 Nov 2001 01:21:16 +0100
From: Jochem Kossen <j.kossen@home.nl>
To: Claus Assmann <freebsd+stable@esmtp.org>
Cc: Jochem Kossen <j.kossen@home.nl>, freebsd-stable@FreeBSD.ORG
Subject: Re: patch for /usr/src/etc/sendmail/freebsd.mc to disable submission (close port 587)
Message-ID: <20011126012116.A49715@jochem.dyndns.org>
Mail-Followup-To: Claus Assmann <freebsd+stable@esmtp.org>,
	Jochem Kossen <j.kossen@home.nl>, freebsd-stable@FreeBSD.ORG
References: <20011126000211.A27034@jochem.dyndns.org> <20011125160446.B3967@zardoc.esmtp.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <20011125160446.B3967@zardoc.esmtp.org>; from freebsd+stable@esmtp.org on Sun, Nov 25, 2001 at 04:04:46PM -0800
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-stable.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-stable>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-stable>
X-Loop: FreeBSD.ORG

On Sun, Nov 25, 2001 at 04:04:46PM -0800, Claus Assmann wrote:
> On Mon, Nov 26, 2001, Jochem Kossen wrote:
> > I wonder why by default, the submission function of sendmail (which is
> > to my knowledge rarely used) is enabled, so i created a small a patch
> > for disabling it, maybe it could be used?
> > If not, could someone explain to me whoever uses the thing? :)
> 
> We (i.e., the authors of sendmail) have enabled it by default to
> encourage its use.  If you turn it off, how do you expect that other
> programs will actually use it?

By documenting it? People will enable it if they need it. In my opinion,
every extra open port on a computer is a security risk.

As seen from your side, it has been enabled for quite some time now, did
it work? Are there programs which actually use it? Are those programs
widely used? If yes to all questions, then my patch shouldn't be used in
the default freebsd sources. Otherwise, i think it should.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message