https://community.hpe.com/t5/operating-system-hp-ux/email-security/m-p/2668735#M756732 Laurie,<BR /><BR />you might want to look at the security of your mail server from different "angles", some of which have already been mentioned:<BR /><BR />1)Access control on IP level<BR /> =&gt; limit who can connect to the machine, using IP filtering as mentioned above.<BR /><BR />2) Patch the application <BR /> =&gt; avoid being "hacked" through exploiting a programming error and the system being controlled by an intruder. Use the patch check tool as mentioned above<BR /><BR />3) Configure sendmail in a way that it can't be misused by spammers. These guys don't hack you but they exploit a too "liberal" configuration by relaying tons of mail through your site.<BR /> =&gt; see <A href="http://www.sendmail.org/tips/relaying.html" target="_blank">http://www.sendmail.org/tips/relaying.html</A><BR />or<BR /><A href="http://www.sendmail.org/antispam.html" target="_blank">http://www.sendmail.org/antispam.html</A><BR /><BR />Regards,<BR /><BR />Knut Sun, 03 Mar 2002 22:00:29 GMT Knut Eckstein 2002-03-03T22:00:29Z https://community.hpe.com/t5/operating-system-hp-ux/email-security/m-p/2668729#M756726 Greetings from the Midwest,<BR /><BR />We use sendmail and can email in and out from our HP K360<BR />HP-UX 11.0 freely to the internet.<BR /><BR />We have a good firewall on our<BR />network. However, one we are not a Trusted system yet (will be soon).<BR /><BR />We don't have any security patches either. My concern is<BR />that a spammer could send an email to our HP Server and take down our box.<BR /><BR />Here is our sendmail version<BR />and patch:<BR /><BR /> PHNE_17190 1.0 sendmail(1m) 8.8.6 patch<BR /><BR />Could someone education me here?<BR /><BR />TIA,<BR />Laurie Thu, 21 Feb 2002 02:31:56 GMT https://community.hpe.com/t5/operating-system-hp-ux/email-security/m-p/2668729#M756726 Laurie_2 2002-02-21T02:31:56Z https://community.hpe.com/t5/operating-system-hp-ux/email-security/m-p/2668730#M756727 Hi,<BR /><BR />You can check out using an SMTP proxy.<BR /><BR />Hope this helps. Regards.<BR /><BR />Steven Sim Kok Leong Thu, 21 Feb 2002 02:38:04 GMT https://community.hpe.com/t5/operating-system-hp-ux/email-security/m-p/2668730#M756727 Steven Sim Kok Leong 2002-02-21T02:38:04Z https://community.hpe.com/t5/operating-system-hp-ux/email-security/m-p/2668731#M756728 Hi Laurie,<BR /><BR />Take a look at this thread,<BR /><BR /><A href="http://us-support3.external.hp.com/cki/bin/doc.pl/sid=5a9a05b71269394dba/screen=ckiDisplayDocument?docId=200000054954278" target="_blank">http://us-support3.external.hp.com/cki/bin/doc.pl/sid=5a9a05b71269394dba/screen=ckiDisplayDocument?docId=200000054954278</A><BR /><BR />Hope this helps.<BR /><BR />Regds<BR /> Thu, 21 Feb 2002 04:42:42 GMT https://community.hpe.com/t5/operating-system-hp-ux/email-security/m-p/2668731#M756728 Sanjay_6 2002-02-21T04:42:42Z https://community.hpe.com/t5/operating-system-hp-ux/email-security/m-p/2668732#M756729 Hi,<BR /><BR />get "ipchains/9000" and use it for some "firewall" restrictions of your HP-UX box itself...<BR /><BR />HTH,<BR />Wodisch Thu, 21 Feb 2002 20:30:41 GMT https://community.hpe.com/t5/operating-system-hp-ux/email-security/m-p/2668732#M756729 Wodisch 2002-02-21T20:30:41Z https://community.hpe.com/t5/operating-system-hp-ux/email-security/m-p/2668733#M756730 you can download the security patch check utility from here:<BR /><BR /><A href="http://www.software.hp.com/cgi-bin/swdepot_parser.cgi/cgi/displayProductInfo.pl?productNumber=B6834A" target="_blank">http://www.software.hp.com/cgi-bin/swdepot_parser.cgi/cgi/displayProductInfo.pl?productNumber=B6834A</A> <BR /><BR />and then you can run this monthly to check for new updates.<BR /><BR />HTH<BR />mark Thu, 21 Feb 2002 20:42:17 GMT https://community.hpe.com/t5/operating-system-hp-ux/email-security/m-p/2668733#M756730 Mark Greene_1 2002-02-21T20:42:17Z https://community.hpe.com/t5/operating-system-hp-ux/email-security/m-p/2668734#M756731 Hi Laurie,<BR /><BR />I think mark had been guiding you towards this link,<BR /><BR /><A href="https://software.hp.com/cgi-bin/swdepot_parser.cgi/cgi/try.pl?productNumber=B6834AA&amp;date=" target="_blank">https://software.hp.com/cgi-bin/swdepot_parser.cgi/cgi/try.pl?productNumber=B6834AA&amp;date=</A><BR /><BR />Note the s in http. So you have to copy and paste the link in your browser to access the link.<BR /><BR />Hope this helps.<BR /><BR />Regds<BR /> Thu, 21 Feb 2002 20:53:46 GMT https://community.hpe.com/t5/operating-system-hp-ux/email-security/m-p/2668734#M756731 Sanjay_6 2002-02-21T20:53:46Z https://community.hpe.com/t5/operating-system-hp-ux/email-security/m-p/2668735#M756732 Laurie,<BR /><BR />you might want to look at the security of your mail server from different "angles", some of which have already been mentioned:<BR /><BR />1)Access control on IP level<BR /> =&gt; limit who can connect to the machine, using IP filtering as mentioned above.<BR /><BR />2) Patch the application <BR /> =&gt; avoid being "hacked" through exploiting a programming error and the system being controlled by an intruder. Use the patch check tool as mentioned above<BR /><BR />3) Configure sendmail in a way that it can't be misused by spammers. These guys don't hack you but they exploit a too "liberal" configuration by relaying tons of mail through your site.<BR /> =&gt; see <A href="http://www.sendmail.org/tips/relaying.html" target="_blank">http://www.sendmail.org/tips/relaying.html</A><BR />or<BR /><A href="http://www.sendmail.org/antispam.html" target="_blank">http://www.sendmail.org/antispam.html</A><BR /><BR />Regards,<BR /><BR />Knut Sun, 03 Mar 2002 22:00:29 GMT https://community.hpe.com/t5/operating-system-hp-ux/email-security/m-p/2668735#M756732 Knut Eckstein 2002-03-03T22:00:29Z