Date: Tue, 22 May 2007 20:37:55 +0100 From: Alex Zbyslaw <xfb52@dial.pipex.com> To: Maxim Khitrov <mkhitrov@gmail.com> Cc: freebsd-questions@freebsd.org Subject: Re: Sendmail ignores hosts.allow Message-ID: <46534693.3060208@dial.pipex.com> In-Reply-To: <26ddd1750705221046m543c427ahf9c73878d14f6e2a@mail.gmail.com> References: <26ddd1750705211537j78ed83fdm921f7f5e5df5c4@mail.gmail.com> <20070522105732.A2743@erienet.net> <26ddd1750705220837n141787fdh6167c0cb07a8396f@mail.gmail.com> <20070522121629.X86945@fledge.watson.org> <26ddd1750705221046m543c427ahf9c73878d14f6e2a@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Maxim Khitrov wrote: > I'm not sure I understand what you mean... I'm not using inetd, and > the default configuration doesn't block sendmail from all remote > hosts. The ssh server is running all by itself, same as sendmail. The > way I understand it is that as long as the server was compiled with > tcp wrappers, it should follow the rules in hosts.allow. Sendmail is different from other network apps in that it does not block the connection when a deny rule is in effect, instead it send some kind of reject code (5xx) during the SMTP conversation. If you check /var/log/maillog you may well see this happening. If you search the mail archives (or try google) with some appropriate keywords then you should find a post from Matthew Seaman which explains it in detail You could also search the source code, if you are somewhat C literate. If you want to completely block connections from specific hosts (or only allow specific hosts) then I would suggest doing that with firewall rules. Didn't follow the start of the thread very closely so I hope I got the right end of the stick. --Alex
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?46534693.3060208>