HPE Community
Operating System - HP-UX
1753560 Members
5680 Online
108796 Solutions
New Discussion юеВ

sendmail as cron

 
SOLVED
Go to solution
kholikt
Super Advisor

тАО01-10-2005 08:23 PM

тАО01-10-2005 08:23 PM

sendmail as cron

Hi,

I am doing some security compliant check I was thinking of disable sendmail daemon and run it as cron. Is this advisable to do so?

3,18,33,48 * * * * /usr/sbin/sendmail -q >/dev/null2>&1
abc
0 Kudos
Reply
6 REPLIES 6
Peter Godron
Honored Contributor

тАО01-10-2005 08:38 PM

тАО01-10-2005 08:38 PM

Solution

Re: sendmail as cron

Unless a justifiable reason exists I would not run it from cron, as error tracking may get a lot harder.
What would be the difference between having it running at all times and every 15 minutes?
Reply
Ravi_8
Honored Contributor

тАО01-10-2005 08:39 PM

тАО01-10-2005 08:39 PM

Re: sendmail as cron

Hi,

sendmail daemon must be running if the sendmail need to run, If you disable it, cronjob gives the error
never give up
Reply
Gordon Morrison
Trusted Contributor

тАО01-11-2005 08:48 PM

тАО01-11-2005 08:48 PM

Re: sendmail as cron

I experimented with this when looking into increasing security, as it is one of the recommendations in the CIS Benchmark for HP-UX (See http://www.CISecurity.org)
I found it to be more trouble than it's worth. The main problem is that this setup prevents the host from receiving any email from outside. The cron job flushes outgoing email, but it will never collect. Users on the same node can send and receive to each other, but that machine won't accept any email from outside.
What does this button do?
Reply
Peter Godron
Honored Contributor

тАО01-27-2005 09:48 PM

тАО01-27-2005 09:48 PM

Re: sendmail as cron

Hi,
what was the solution/decision on this in the end? What was the reasoning on choosing the particular solution?
Reply
Thierry Poels_1
Honored Contributor

тАО01-27-2005 10:15 PM

тАО01-27-2005 10:15 PM

Re: sendmail as cron

Hi,

there's no need to run the sendmail daemon continiously if your server does not receive mail, or doesn't act as a gateway.
You don't need sendmail to send mails :)

And because there were (and probably still are) many security issues with sendmail it's a damn good idea to disable the daemon and run it periodicaly throug cron.

regards,
Thierry.
All unix flavours are exactly the same . . . . . . . . . . for end users anyway.
Reply
Elmar P. Kolkman
Honored Contributor

тАО01-28-2005 12:08 AM

тАО01-28-2005 12:08 AM

Re: sendmail as cron

Thierry is right, of course...
On a node where you won't receive mail, only send it, this is a good idea. Though there is no need to run it every 15 minutes, normally, because if a user sends mail, it will first try to send it directly and only if that doesn't succeed at once, it is placed in the queue. So only if the relay or receiving mail server doesn't respond when the mail is sent initially, you need the flushing proces started with cron...
Every problem has at least one solution. Only some solutions are harder to find.
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.