From owner-freebsd-questions@FreeBSD.ORG Wed Dec 13 19:12:50 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 7C0B216A412 for ; Wed, 13 Dec 2006 19:12:50 +0000 (UTC) (envelope-from tuaregmex@gmail.com) Received: from ug-out-1314.google.com (ug-out-1314.google.com [66.249.92.174]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3E82143CA6 for ; Wed, 13 Dec 2006 19:11:19 +0000 (GMT) (envelope-from tuaregmex@gmail.com) Received: by ug-out-1314.google.com with SMTP id o2so239976uge for ; Wed, 13 Dec 2006 11:12:48 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:references; b=bdVvwp/LVlnkTm6H0eKNWtz1Qu9YvJRwtGaxcTcX8SLOiO+wttUH4AT500YrbhbaqlnvrmoG1rXzqULZvuMZHi6bmzhlkkTCpBFMNQPOlKLnx96fqoQei6sVlaGzVJmH27xMENm30PpCCyvbeR/OIWYlF5aDkwKEtbPAB/ibOAo= Received: by 10.78.185.16 with SMTP id i16mr905710huf.1166037167723; Wed, 13 Dec 2006 11:12:47 -0800 (PST) Received: by 10.78.161.19 with HTTP; Wed, 13 Dec 2006 11:12:47 -0800 (PST) Message-ID: <7a4a15bd0612131112x25e1cc4mcfb85843edcf596@mail.gmail.com> Date: Wed, 13 Dec 2006 13:12:47 -0600 From: Tuareg To: Lane In-Reply-To: <200612081139.27993.lane@joeandlane.com> MIME-Version: 1.0 References: <20061206034909.27125.qmail@web37214.mail.mud.yahoo.com> <200612052208.54833.lane@joeandlane.com> <7a4a15bd0612080916g1e25d1eer63a40608b82779ec@mail.gmail.com> <200612081139.27993.lane@joeandlane.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-questions@freebsd.org Subject: Re: how do I see security logs without turning on sendmail? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 13 Dec 2006 19:12:50 -0000 Hi Lane, We have tried that too.. We have the same rules that in the other servers where we can send e-mail without launching sendmail as daemon. Anyway we have tried disabling all the rules with: ipfw -f -q flush And listing the rules: 65535 87358 61876 allow ip from any to any mail -v root@localhost Subject: test test. . EOT root@localhost... Connecting to localhost.my.domain. via relay... root@localhost... Deferred: Operation timed out with localhost.my.domain. mail -v user@other.domain.com Subject: test test . EOT user@other.domain.com... Connecting to localhost.my.domain. via relay... user@other.domain.com... Deferred: Operation timed out with localhost.my.domain. Also searched about sendmail in the BSD FAQ, Handbook, if we should change some file in /etc/mail, but (maybe should look again?) didn't find anything about which file should we modify, let's say.. submit.mc? freebsd.submit.mc? Suggestions? Thank you for your help. On 12/8/06, Lane wrote: > > On Friday 08 December 2006 11:16, Tuareg wrote: > > On 12/5/06, Lane wrote: > > > On Tuesday 05 December 2006 21:49, Wasp King wrote: > > > > is there a way that one can specify a log place to see > > > > daily logs like you receive from root@localhost, when > > > > sendmail is turned on? > > > > > > > > there must be a way to enable only local mail > > > > delivery...but I am not sure how.. > > > > > > > > would like to shut down sendmail but want to see > > > > security logs. > > > > > > > > thanks. > > > > > > > > Zach > > > > using FreeBSD 4.2 and sendmail 8.x (maybe). > > > > > > > _________________________________________________________________________ > > >__ IIRC, sendmail has three controlling values in /etc/rc.conf: > > > > > > sendmail_enable="YES" > > > sendmail_enable="NO" > > > and > > > sendmail_enable="NONE" > > > > > > The third value, "NONE," causes the boot process to ignore any attempt > to > > > start sendmail. > > > > > > The second value, "NO," causes the boot process to start sendmail for > > > "local > > > delivery, only" (i.e. do NOT accept inbound connections from external > > > hosts). > > > > > > The first value, "YES," causes the boot process to start sendmail for > > > outgoing > > > and incoming SMTP connections. > > > > > > There are many "tweaks" that you can use in /etc/rc.conf - (refer > > > to /etc/defaults/rc.conf) - that will allow various flavors of > sendmail > > > usage. See also, /etc/rc.sendmail. > > > > > > In your case sendmail_enable="NO" should allow the local system to > > > send "periodic" information to root@localhost, or whatever alias you > use > > > in /etc/mail/aliases, while disallowing external hosts from sending > email > > > by > > > way of the local host. Note that this requires that you pay heed > > > to /etc/mail/Makefile and associated README documentation > > > in /usr/src/contrib/sendmail and below. > > > > > > Best of luck! > > > > > > > > > lane > > > > Hi... Where I'm working, have many servers with FreeBSD 4.x and 5.x, > this > > servers are enable to send mail but the daemon of sendmail is not > launched. > > > > Now, we have installed FreeBSD 6.1 STABLE, but can't reply this schema. > > > > Which file needs to be modified in /etc/mail to allow the server to send > > emails to our real mailserver so we can receive the results of some > scripts > > without launching the daemon of sendmail? > > > > We have tried using sendmail="NO", in rc.conf, but we only get this > > messages: > > > > user@mydomain.com... Connecting to [127.0.0.1] via relay... > > user@mydomain.com... Deferred: Permission denied > > > > Thank you for your help in advance. > > _______________________________________________ > > freebsd-questions@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > > To unsubscribe, send any mail to > > "freebsd-questions-unsubscribe@freebsd.org" > Tuareg, > > Your problem is likely related to ipfw, or "firewall_type", > "firewall_enable" > in /etc/rc.conf. > > The "permission denied" error implies that your firewall ruleset is > preventing > the outgoing connection. Try: > > ipfw show > > to see your current firewall rules. > > Also read through /etc/rc.firewall and /etc/defaults/rc.conf to get some > more > information on the firewall issues. > > When you've gotten that resolved you should have enough information to get > sendmail working the way you want. > > lane > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to " > freebsd-questions-unsubscribe@freebsd.org" >