Subject: Re: install/21998: /etc/daily security mail broken, need to install
To: None <email@example.com>
From: William Allen Simpson <firstname.lastname@example.org>
Date: 06/27/2003 15:10:43
Andrew Brown wrote:
> >In a default install, the daily security mail is queued in
> > /var/spool/clientmqueue, and never delivered!
> >The default install does not properly deliver mail to localhost.
> read /usr/src/UPDATING.
Relevance? This is a clean install circa a few days ago. Thus, the
"install" tag. No updating needed. (The sendmail date is 20030324.)
And, the UPDATING file specifies /etc/mail/submit.cf, which is in fact
> >The new sendmail configuration is not amenable to sending only to
> >localhost and outgoing send-pr mail, without also allowing incoming
> >smtp (which is disabled in the default install).
> read /etc/defaults/rc.conf.
Relevance? It specifies a "fairly complicated" setup, that is not
installed by default.
Security scripts, daily, weekly, et alia are installed and run by
default. They no longer work properly. This is a recently introduced
bug, that needs fixing at installation time, not by some hapless
sysadmin having to figure out every time they install a new machine.
> >According to traffic on the tech-install list, postfix is trivially
> >configurable to send only, without also allowing incoming smtp.
> so is sendmail.
> # cd /usr/share/sendmail
> # cp netbsd-proto.mc sendmail.mc
> # ed local.mc
> DAEMON_OPTIONS(`Family=inet, address=0.0.0.0, Name=MTA')dnl
> DAEMON_OPTIONS(`Family=inet6, address=::, Name=MTA6, Modifiers=O')dnl
> DAEMON_OPTIONS(`Family=inet, address=127.0.0.1, Name=MTA')dnl
> # make sendmail.cf
> # cp sendmail.cf /etc/mail
> and then, once you've started the sendmail daemon, do this:
> sendmail -Ac -q
> to flush the items from the clientmqueue directory.
Is that the suggested fix for default install?
William Allen Simpson
Key fingerprint = 17 40 5E 67 15 6F 31 26 DD 0D B9 9B 6A 15 2C 32