Subject: Re: Sendmail/TCP wapper and HELO
To: John Maier <jmaier@midamerica.net>
From: Andrew Brown <atatat@atatdot.net>
List: netbsd-users
Date: 08/25/2003 00:00:53
>Any idea how to get sendmail to honor TCP wappers (host.allow/deny) so it
>immediately closes a connection before any sort of dialog occurs.
>
>I have observed that if inetd see that a connection request is denied via
>TCP wrappers, the connection is close immediately.
>
>Sendmail will open a connection, send a banner message, respond to HELO
>commands, but anything beyond that, i.e. MAIL RCPT etc. generate a 550
>error.
>
>I want no banner, no HELO, just a closed port.

you can't do that, except by modifying sendmail yourself.  sendmail
uses hosts.allow/deny in a manner somewhat akin to the access database
and REJECT entries: it will talk to them, but refuse to accept any
mail from them.  that's somewhat better, too, since anything trying to
relay mail to you will then stop as opposed to repeatedly trying and
failing.

hmm...i wonder if we can get ftpd to behave like that...

-- 
|-----< "CODE WARRIOR" >-----|
codewarrior@daemon.org             * "ah!  i see you have the internet
twofsonet@graffiti.com (Andrew Brown)                that goes *ping*!"
werdna@squooshy.com       * "information is power -- share the wealth."