logwatch on redhat9

logwatch on redhat9

Post by rsin » Thu, 15 May 2003 21:41:41

Hi all,

The logwatch on my machine has the following entry in its send mail section
that makes me to believe my machine is relaying email from/to third parties
(where some machine uses my machine to send spam to a thir machine).

 --------------------- sendmail Begin ------------------------

Unresolveable or non-existent domains:

Did not issue MAIL/EXPN/VRFY/ETRN during connection to MTA:       :    1 Time(s)

**Unmatched Entries**
   STARTTLS=client, relay=, version=TLSv1/SSLv3, verify=FAIL,
cipher=RC4-MD5, bits=128/128:
1 Time(s)

 ---------------------- sendmail End -------------------------

I would send and receive email at my machine directly, so far with
apparently no problem, but I want to halt any relaying from other machines.
I feel I haven't really understood the instructions in
/etc/mail/sendmail.mc because I've noticed I haven't uncommented the
following line, and I still do get email from network.

dnl #
dnl # The following causes sendmail to only listen on the IPv4 loopback
dnl # and not on any other network devices. Remove the loopback
dnl # address restriction to accept email from the internet or intranet.
dnl #
dnl # DAEMON_OPTIONS(`Port=smtp,Addr=, Name=MTA')dnl

I also have the following lines in my /etc/mail/sendmail.mc:

dnl #
dnl # FEATURE(`accept_unresolvable_domains')dnl
dnl #
dnl FEATURE(`relay_based_on_MX')dnl
dnl #

What (other) lines should I change to make sure mail directed to my machine
does get through, but mailk directed to a third machine doesn't?



1. logwatch question

I am setting up  logwatch.pl 1.113 2004.06.23 on a Solaris Sparc host.

My old log files are in the format of logname.XX.gz where XX can be from
00-99. I disliked the one digit number as this does not sort correctly and
so I modified logrotate to produce this format with two digits.

How does logwatch dertermine the correct log file to use for range = ?

Is the logname.XX.gz log file name ok?

I have looked at the debug output and through the logwatch script but I
cannot see the answers to my questions.



2. The Linux Meme and the summer media blues

3. Disturbing logwatch report after kernel upgrade

4. Apache Method not implemented (POST)

5. LogWatch

6. AIX 4.3.2 raw devices EXTSHMM

7. kde(kaudio) problem

8. logwatch and logsentry

9. LogWatch on RedHat 9 and mail relaying

10. Anyone Ported Logwatch to AIX 4?

11. LogWatch Log

12. logwatch perms