1827424 Members
4243 Online
109965 Solutions
New Discussion

sendmail configuration

 
SOLVED
Go to solution
Fauziah Mahdan
Super Advisor

sendmail configuration

Hi all, from penetration report we all found vulnerability for all unix server with sendmail. The recommendation is to add option: privacyOptions=goaway

Where should I set this options?

Thanks
Fauziah
5 REPLIES 5
Sameer_Nirmal
Honored Contributor
Solution

Re: sendmail configuration

The option should be set in
/etc/mail/sendmail.cf

Once option is put, you need to restart sendmail using
# /sbin/init.d/sendmail stop
# /sbin/init.d/sendmail start
Rajeev  Shukla
Honored Contributor

Re: sendmail configuration

You would add this option in sendmail.mc file and then recompile the sendmail.cf or easy way is to just add the option in sendmail.cf file as below
O PrivacyOptions=goaway
and restart the sendmail daemon
Michael Steele_2
Honored Contributor

Re: sendmail configuration

vi /etc/mail/sendmail.cf and search on PrivacyOptions then add something like:

PrivacyOptions=authwarnings,restrictqrun,goaway,noexpn,novrfy

http://www.faqs.org/docs/securing/chap22sec183.html
Support Fatherhood - Stop Family Law
Fauziah Mahdan
Super Advisor

Re: sendmail configuration

thanks all

Fauziah Mahdan
Steven E. Protter
Exalted Contributor

Re: sendmail configuration

Shalom Fauziah,

Don't mean to chime in late, but if you use sendmail.mc macro's you may wish to do it differently.

http://docs.hp.com/en/T2343-90001/ch01s01.html

It is an option for DAEMON_OPTIONS should you be a user of the macro file.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com