Subject: Re: Sendmail/TCP wapper and HELO
To: John Maier <jmaier@midamerica.net>
From: Steven M. Bellovin <smb@research.att.com>
List: netbsd-users
Date: 08/18/2003 17:10:55
In message <00fd01c365cb$9c920e90$c814a8c0@jmaier>, "John Maier" writes:
>Any idea how to get sendmail to honor TCP wappers (host.allow/deny) so it
>immediately closes a connection before any sort of dialog occurs.
>
>I have observed that if inetd see that a connection request is denied via
>TCP wrappers, the connection is close immediately.
>
>Sendmail will open a connection, send a banner message, respond to HELO
>commands, but anything beyond that, i.e. MAIL RCPT etc. generate a 550
>error.
>
>I want no banner, no HELO, just a closed port.
>

Use ipf instead -- they won't even get a syn-ack.


		--Steve Bellovin, http://www.research.att.com/~smb