From owner-freebsd-questions@FreeBSD.ORG Wed Jan 9 07:16:14 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id B890816A417 for ; Wed, 9 Jan 2008 07:16:14 +0000 (UTC) (envelope-from m.seaman@infracaninophile.co.uk) Received: from smtp.infracaninophile.co.uk (ns0.infracaninophile.co.uk [81.187.76.162]) by mx1.freebsd.org (Postfix) with ESMTP id 03B0B13C459 for ; Wed, 9 Jan 2008 07:16:13 +0000 (UTC) (envelope-from m.seaman@infracaninophile.co.uk) Received: from happy-idiot-talk.infracaninophile.co.uk (localhost [IPv6:::1]) by smtp.infracaninophile.co.uk (8.14.2/8.14.2) with ESMTP id m097EoGR010525; Wed, 9 Jan 2008 07:14:51 GMT (envelope-from m.seaman@infracaninophile.co.uk) X-DKIM: Sendmail DKIM Filter v2.4.2 smtp.infracaninophile.co.uk m097EoGR010525 Authentication-Results: smtp.infracaninophile.co.uk; dkim=hardfail (SSP) header.i=unknown Message-ID: <4784746A.1030501@infracaninophile.co.uk> Date: Wed, 09 Jan 2008 07:14:50 +0000 From: Matthew Seaman Organization: Infracaninophile User-Agent: Thunderbird 2.0.0.9 (X11/20071122) MIME-Version: 1.0 To: Giorgos Keramidas References: <8EE4A2AA-E15D-4C07-AFBC-061A4595DA82@optusnet.com.au> <4783C048.9080403@ridecharge.com> <20080109042018.GA13913@kobe.laptop> In-Reply-To: <20080109042018.GA13913@kobe.laptop> X-Enigmail-Version: 0.95.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-3.0 (smtp.infracaninophile.co.uk [IPv6:::1]); Wed, 09 Jan 2008 07:14:51 +0000 (GMT) X-Virus-Scanned: ClamAV 0.92/5448/Wed Jan 9 05:26:25 2008 on happy-idiot-talk.infracaninophile.co.uk X-Virus-Status: Clean X-Spam-Status: No, score=-2.9 required=5.0 tests=AWL,BAYES_00,NO_RELAYS autolearn=ham version=3.2.3 X-Spam-Checker-Version: SpamAssassin 3.2.3 (2007-08-08) on happy-idiot-talk.infracaninophile.co.uk Cc: "Philip M. Gollucci" , Jerahmy Pocott , FreeBSD Questions Subject: Re: Sendmail: "exposed" root, why? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 09 Jan 2008 07:16:14 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Giorgos Keramidas wrote: > On 2008-01-08 13:26, "Philip M. Gollucci" wrote: >> Jerahmy Pocott wrote: >>> From the sendmail documentation: >>> "There are always users that need to be "exposed" -- that is, their >>> internal site name should be displayed instead of the masquerade >>> name. Root is an example (which has been "exposed" by default prior >>> to 8.10)." > The `root' user is no longer exposed, so the really *imporant* question > is ``why are you still running Sendmail 8.10?'' He isn't. That's a direct quote from /usr/share/sendmail/cf/README as supplied with RELENG_7 -- ie. sendmail 8.14.2. It says that root being a member of Class E has been the default ever since at least sendmail 8.10. That is still the case: /etc/mail:% grep 'C{E}' freebsd.cf C{E}root /etc/mail:% uname -r 7.0-PRERELEASE and in fact, the OP's point was that the sendmail.mc macros which exist for manipulating Class E don't let you *remove* the entry for root. It seems the official way to do that is to define your own DOMAIN() configuration -- starting by copying and editing /usr/share/sendmail/cf/domain/generic.m4 looks like the way to go. Cheers, Matthew - -- Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate Kent, CT11 9PW -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4 (FreeBSD) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFHhHRq8Mjk52CukIwRCIOfAKCF4OS/riIfhmCW/5LC6rWhvrxjAwCeMooh g8x4dszd6kVRHw7Aculezck= =Zmha -----END PGP SIGNATURE-----