Sendmail: "exposed" root, why?
Matthew Seaman
m.seaman at infracaninophile.co.uk
Tue Jan 8 23:16:14 PST 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Giorgos Keramidas wrote:
> On 2008-01-08 13:26, "Philip M. Gollucci" <philip at ridecharge.com> wrote:
>> Jerahmy Pocott wrote:
>>> From the sendmail documentation:
>>> "There are always users that need to be "exposed" -- that is, their
>>> internal site name should be displayed instead of the masquerade
>>> name. Root is an example (which has been "exposed" by default prior
>>> to 8.10)."
> The `root' user is no longer exposed, so the really *imporant* question
> is ``why are you still running Sendmail 8.10?''
He isn't. That's a direct quote from /usr/share/sendmail/cf/README
as supplied with RELENG_7 -- ie. sendmail 8.14.2. It says that root
being a member of Class E has been the default ever since at least
sendmail 8.10. That is still the case:
/etc/mail:% grep 'C{E}' freebsd.cf
C{E}root
/etc/mail:% uname -r
7.0-PRERELEASE
and in fact, the OP's point was that the sendmail.mc macros which
exist for manipulating Class E don't let you *remove* the entry for
root. It seems the official way to do that is to define your own
DOMAIN() configuration -- starting by copying and editing
/usr/share/sendmail/cf/domain/generic.m4 looks like the way to go.
Cheers,
Matthew
- --
Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard
Flat 3
PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate
Kent, CT11 9PW
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.4 (FreeBSD)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFHhHRq8Mjk52CukIwRCIOfAKCF4OS/riIfhmCW/5LC6rWhvrxjAwCeMooh
g8x4dszd6kVRHw7Aculezck=
=Zmha
-----END PGP SIGNATURE-----
More information about the freebsd-questions
mailing list