tech-install: Re: install/21998: /etc/daily security mail broken, need to install

Subject: Re: install/21998: /etc/daily security mail broken, need to install
To: None <gnats-bugs@gnats.netbsd.org>
From: William Allen Simpson <wsimpson@greendragon.com>
List: tech-install
Date: 06/27/2003 15:10:43

Andrew Brown wrote:
> 
> >In a default install, the daily security mail is queued in
> > /var/spool/clientmqueue, and never delivered!
> >
> >The default install does not properly deliver mail to localhost.
> 
> read /usr/src/UPDATING.
> 
Relevance?  This is a clean install circa a few days ago.  Thus, the 
"install" tag.  No updating needed.  (The sendmail date is 20030324.)

And, the UPDATING file specifies /etc/mail/submit.cf, which is in fact 
already installed.


> >The new sendmail configuration is not amenable to sending only to
> >localhost and outgoing send-pr mail, without also allowing incoming
> >smtp (which is disabled in the default install).
> 
> read /etc/defaults/rc.conf.
> 
Relevance?  It specifies a "fairly complicated" setup, that is not 
installed by default.  

Security scripts, daily, weekly, et alia are installed and run by 
default.  They no longer work properly.  This is a recently introduced 
bug, that needs fixing at installation time, not by some hapless 
sysadmin having to figure out every time they install a new machine.


> >According to traffic on the tech-install list, postfix is trivially
> >configurable to send only, without also allowing incoming smtp.
> 
> so is sendmail.
> 
>         # cd /usr/share/sendmail
>         # cp netbsd-proto.mc sendmail.mc
>         # ed local.mc
>         130
>         /DAEMON_OPTIONS
>         DAEMON_OPTIONS(`Family=inet, address=0.0.0.0, Name=MTA')dnl
>         d
>         /
>         DAEMON_OPTIONS(`Family=inet6, address=::, Name=MTA6, Modifiers=O')dnl
>         d
>         /
>         ?
>         a
>         DAEMON_OPTIONS(`Family=inet, address=127.0.0.1, Name=MTA')dnl
>         .
>         wq
>         60
>         # make sendmail.cf
>         # cp sendmail.cf /etc/mail
> 
> and then, once you've started the sendmail daemon, do this:
> 
>         sendmail -Ac -q
> 
> to flush the items from the clientmqueue directory.
> 
Is that the suggested fix for default install?
-- 
William Allen Simpson
    Key fingerprint =  17 40 5E 67 15 6F 31 26  DD 0D B9 9B 6A 15 2C 32