HPE Community
Operating System - HP-UX
1837823 Members
3888 Online
110121 Solutions
New Discussion

Re: Why can I still send mail with the sendmail daemon shutdown?

 
Craig A. Sharp
Super Advisor

‎04-18-2006 01:28 AM

‎04-18-2006 01:28 AM

Why can I still send mail with the sendmail daemon shutdown?

We are talking about shutting down the sendmail daemon to protect from the latest vulnerability. http://secunia.com/advisories/19342

I am testing and with the sendmail daemon shutdown, I am still able to send out mail. Can someone explain why this is happening?
0 Kudos
Reply
7 REPLIES 7
Pete Randall
Outstanding Contributor

‎04-18-2006 01:31 AM

‎04-18-2006 01:31 AM

Re: Why can I still send mail with the sendmail daemon shutdown?

The sendmail daemon receives mail. It does not need to be running in order to send mail. Check the man page.


Pete

Pete
0 Kudos
Reply
A. Clay Stephenson
Acclaimed Contributor

‎04-18-2006 01:34 AM

‎04-18-2006 01:34 AM

Re: Why can I still send mail with the sendmail daemon shutdown?

This is perfectly normal. Eventhough sendmail is not running as a deamon listening for requests --- necessary to receive mail --- a user can still either directly launch sendmail or indirectly through another mail front-end command (mailx, mail, elc, et al). Sendmail sends the mails and then exits when used in this way.
If it ain't broke, I can fix that.
0 Kudos
Reply
Steven E. Protter
Exalted Contributor

‎04-18-2006 01:46 AM

‎04-18-2006 01:46 AM

Re: Why can I still send mail with the sendmail daemon shutdown?

Shalom Craig,

The sendmail binary can send mail without the daemon up. the daemon permits the reception of mail.

The binary will act according to the sendmail.cf configuration, so you can configure the server not to let mail off the system.

The sendmail folks consider this to be a feature.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
Craig A. Sharp
Super Advisor

‎04-18-2006 01:48 AM

‎04-18-2006 01:48 AM

Re: Why can I still send mail with the sendmail daemon shutdown?

ok thats great. So if I shutdown the daemon I should be protected from the vulnerability?
0 Kudos
Reply
Peter Godron
Honored Contributor

‎04-18-2006 01:57 AM

‎04-18-2006 01:57 AM

Re: Why can I still send mail with the sendmail daemon shutdown?

Craig,
yes, that is correct.
The vulnerability is in the daemon, necessary for receiving mail.
0 Kudos
Reply
Geoff Wild
Honored Contributor

‎04-18-2006 02:36 AM

‎04-18-2006 02:36 AM

Re: Why can I still send mail with the sendmail daemon shutdown?

Craig - that is correct - it is only for port 25...

You could remove sendmail altogether if you like - by deleting the sendmail binaries..

Rgds...Geoff
Proverbs 3:5,6 Trust in the Lord with all your heart and lean not on your own understanding; in all your ways acknowledge him, and he will make all your paths straight.
0 Kudos
Reply
Rick Garland
Honored Contributor

‎04-18-2006 02:50 AM

‎04-18-2006 02:50 AM

Re: Why can I still send mail with the sendmail daemon shutdown?

One item that auditors look for is sendmail. If you have the sendmail daemon running this constitutes a security risk is their minds because the system will receive mail.

Having the daemon will still allow the system to send mail out but will not receive any mail.

0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.