we have one particular server that is running sendmail "8.12.8/8.9.3" ... and is listed as an open relay on ordb... the specific test it's failing is the recipient to.."To
domain.com:"@domain.com:marvin"@marvin.ordb.org" where domain.com is our local domain...
looks like it's some kinda of : colon relay exploit, and we're having a hard time figure out how to close it...the confuration is the same on all of our boxes and this is the only box that is failing the relay test...is there any way to easy way to trick the relay test into failing or fix the exploit ???
it's not really an issue because the servers only accept incoming mail and deliver mail locally, they are not outgoing mail servers so the open relay issue really doesnt greatly effect anything except mail that is forwarded to other servers that check all of the headers or mail that is remotely popped on servers that check all avail headers but it is still an issue that i'd like to see resolved.
we're considering switching to exim mta as an alternative, but i was hoping there might be some easy way to fix this without changing the mta...kind of looking for an alternative besides enabling pop before smtp or asmtp sessions...maybe just a simple cf file hack ???
any help/suggestions/comments greatly appreciated...
domain.com:"@domain.com:marvin"@marvin.ordb.org" where domain.com is our local domain...looks like it's some kinda of : colon relay exploit, and we're having a hard time figure out how to close it...the confuration is the same on all of our boxes and this is the only box that is failing the relay test...is there any way to easy way to trick the relay test into failing or fix the exploit ???
it's not really an issue because the servers only accept incoming mail and deliver mail locally, they are not outgoing mail servers so the open relay issue really doesnt greatly effect anything except mail that is forwarded to other servers that check all of the headers or mail that is remotely popped on servers that check all avail headers but it is still an issue that i'd like to see resolved.
we're considering switching to exim mta as an alternative, but i was hoping there might be some easy way to fix this without changing the mta...kind of looking for an alternative besides enabling pop before smtp or asmtp sessions...maybe just a simple cf file hack ???
any help/suggestions/comments greatly appreciated...