From owner-freebsd-questions@FreeBSD.ORG Tue May 22 15:37:25 2007 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id AAC6916A400 for ; Tue, 22 May 2007 15:37:25 +0000 (UTC) (envelope-from mkhitrov@gmail.com) Received: from an-out-0708.google.com (an-out-0708.google.com [209.85.132.243]) by mx1.freebsd.org (Postfix) with ESMTP id 6A24A13C465 for ; Tue, 22 May 2007 15:37:25 +0000 (UTC) (envelope-from mkhitrov@gmail.com) Received: by an-out-0708.google.com with SMTP id d23so464358and for ; Tue, 22 May 2007 08:37:24 -0700 (PDT) DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=HkRZ+oXC7d3rABcuPzCOS+2LicmRRcIoQkoxvPyH4vqP1ixY632nb7RTGQFSPt9Fh4zPJFQWxECrNYA4e472T25tWHN/xmOF686gYJaktcd4+aoQCyuEe26E5MOKG+u7O+LKAiN5OBu1YCjX5ZABbodbp6HHlwRsvH35tJ5HkCQ= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=cQPaUJ4UUUs5AacihO2J5uw52IOaOdvzS/zpBskLjGUT2lbt9hZr+6Tp2JB8v73me4HlJ42MASBBn/pEm+Yx+2O8fqFmWKejtzvjpAjT7hS6cdH5ZdEbetYmFtDNPDN0/GQ6Vhoe/7NbSZ7JIVovfWK9sQEZ1PKJXeBR47tHWCw= Received: by 10.100.229.12 with SMTP id b12mr3966143anh.1179848244461; Tue, 22 May 2007 08:37:24 -0700 (PDT) Received: by 10.100.79.17 with HTTP; Tue, 22 May 2007 08:37:24 -0700 (PDT) Message-ID: <26ddd1750705220837n141787fdh6167c0cb07a8396f@mail.gmail.com> Date: Tue, 22 May 2007 11:37:24 -0400 From: "Maxim Khitrov" To: freebsd-questions@freebsd.org In-Reply-To: <20070522105732.A2743@erienet.net> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <26ddd1750705211537j78ed83fdm921f7f5e5df5c4@mail.gmail.com> <20070522105732.A2743@erienet.net> Subject: Re: Sendmail ignores hosts.allow X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 22 May 2007 15:37:25 -0000 On 5/22/07, steveb@erienet.net wrote: > I suspect sendmail is reading /etc/hosts.allow > > # Start by allowing everything (this prevents the rest of the file > # from working, so remove it when you need protection). > # The rules here work on a "First match wins" basis. > #ALL : ALL : allow > > Did you comment out the above line? > > Steve Here's the entire file as it is right now: # Deny sendmail to all clients (temporary) sendmail : all : deny # Allow anything from localhost all : : allow # Process SSH deny rules sshd : /etc/hosts.evil : deny # Allow everything else all : all : allow Once I can get sendmail to block all connection requests, I'll move it below the second rule. That way, only local processes will be able to use it. For now, however, that rule is being ignored completely. - Max