Login or Register to Ask a Question and Join Our Community


UNIX for Advanced & Expert Users

Sendmail/ tcpwrappers

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Top Forums UNIX for Advanced & Expert Users Sendmail/ tcpwrappers
# 1  
Old 06-02-2004
Sendmail/ tcpwrappers
Hi All

I am running Redhat Linux 8 (kernel version 2.4.18). Sendmail version sendmail-8.12.8-9.80. I am also running portsentry on this box that is serving as a mail + App server (Apache + Jserv).

I run into this message off and on in the maillog section of my LogWatch report...

**Unmatched Entries**
STARTTLS=client, relay=mail.xxx.com., version=TLSv1/SSLv3, verify=FAIL, cipher=DES-CBC3-SHA, bits=168/168: 115 Time(s)
tcpwrappers (mxr01.nyc02.dsl.net, 65.84.81.240) rejection: 3 Time(s)
tcpwrappers (mxr01.hvn01.dsl.net, 209.87.64.79) rejection: 2 Time(s)
tcpwrappers (content119b.lga2.nytimes.com, 199.239.138.72) rejection: 1 Time(s)
...

I checked in the /etc/hosts.deny file and found these rejected IP addresses in it. So, I guess portsentry is putting these IPs in there as there may have been some scanning from there.

I did some digging and found that if I update /et/hosts.allow with:
sendmail: ALL

This will allow all to use sendmail. Should this cause some security concerns for me? Does this message mean that someone is trying to send an e-mail and is getting rejected? Or is someone trying to use my smtp server for spam??

Also can someone explain the meaning of this message:

STARTTLS=client, relay=mail.xxx.com., version=TLSv1/SSLv3, verify=FAIL, cipher=DES-CBC3-SHA, bits=168/168: 115 Time(s)

Thanks!

KS
# 2  
Old 07-02-2004
tcpwrapper will deny any entry in the /etc/hosts.deny file. you or someone in your organisation has configure your tcpwrapper to deny the following

(mxr01.nyc02.dsl.net, 65.84.81.240) rejection: 3 Time(s)
tcpwrappers (mxr01.hvn01.dsl.net, 209.87.64.79) rejection: 2 Time(s)
tcpwrappers (content119b.lga2.nytimes.com, 199.239.138.72) rejection: 1 Time(s)

in your /etc/hosts.deny


/etc/hosts.deny is manually modify onless it scripted or you using cfengine
Login or Register to Ask a Question

Previous Thread | Next Thread

10 More Discussions You Might Find Interesting

1. Solaris

Clarifying sendmail configuration - sendmail-client offline

Hi all, I have read about sendmail running as 2 separate process. 1 as a MSP, and the other as the real daemon or MTA. In my current configuration, the sendmail-client is disabled. Both submit.cf and sendmail.cf are left as default untouch I do not specified any mailhost... (3 Replies)
Discussion started by: javanoob
3 Replies

2. UNIX for Advanced & Expert Users

Sendmail

Hi, I have sendmail running in my server. I would like to know the vendor of this sendmail running in the server. I read in a blog that there are many vendors for sendmail. Please advise me how could I identify the vendor for this? Thanks, Poovalingam. (4 Replies)
Discussion started by: poova
4 Replies

3. UNIX for Advanced & Expert Users

Sendmail questions, SCO 5.0.6 sendmail 8.11.0

I am running SCO 5.0.6 and using sendmail 8.11.0 and having issues with smtp authentication. When trying to send mail the following message will kick back. (reason: 530 5.7.1 Authentication required) 530 5.7.1 Authentication required Not sure what needs to be tweeked in sendmail.cf but I... (1 Reply)
Discussion started by: ziggy6
1 Replies

4. Linux

Sendmail

How do i see all incoming mail's and outgoing mail's for a particular user and how do i list folders of sendmail (mailbox) (1 Reply)
Discussion started by: sagar824u
1 Replies

5. Shell Programming and Scripting

Sendmail Help

Hi All, Can anyone help me out to know how can a mail be sent from sendmail command. I tried the below command sendmail -f user-host@xyz.com -s "Some Message" -t abcd@xyz.com It throwed a message -s... User unknown Message... User unknown Some... User unknown But this did not work... (1 Reply)
Discussion started by: ganga.dharan
1 Replies

6. UNIX for Advanced & Expert Users

Sendmail

HI CAN ANYBODY HELP ME? I HAVE COME ACROSS A PROBLEM. I AM USING SENDMAIL IN HP-UX IN THE FOLLOWING MANNER /usr/sbin/sendmail -t someone@someplace.com < /path/to/file.log BUT THE RECEIPIENT DOESNOT GET THE ADDRESS IN THE TO: SECTION OF THE MAIL. ALSO I HAVE NOT FOUND ANY OPTION TO PUT A... (6 Replies)
Discussion started by: cobroraj
6 Replies

7. Programming

sendmail

hi, i am using sendmail function to send the mail for mail client. when i am sending mime content with attaching with body for the images. the image is not displaying in the mail box. all the mime content stuff is displaying. all the headers are proper. hope the reply for this (0 Replies)
Discussion started by: nagineni
0 Replies

8. UNIX for Dummies Questions & Answers

Sendmail

Am runnning sendmail on a Linux box that has connection to 2 ISP. I use on ISP to send external email. How do i restrict sendmail to using the link to my email isp even when i have set my default gateway to my nonemail isp on the linux box? (0 Replies)
Discussion started by: skykay
0 Replies

9. UNIX for Dummies Questions & Answers

sendmail.cf

Dear All , I have Linux Red Hat 6.1 , and i have sendmail (8.11.6 ) . i have big problem with spammers , i was looking in sendmail.cf configuration file and i saw this option , i tried it but it failed : the option is : # file containing known spammers by email,domain,ip Kjunk hash... (1 Reply)
Discussion started by: tamemi
1 Replies

10. UNIX for Dummies Questions & Answers

sendmail

Hello Everyone! Can anyone help me with this problem. When root sends mail from my sun to our exchange server the from field looks like this"root@server.domain.com but i would like it to look like this "root.server@domain.com" or somthing like that. I dont wont the "server" after the @. i like... (2 Replies)
Discussion started by: dozy
2 Replies
Login or Register to Ask a Question