[Raw Msg Headers][Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

percent sign hack and open relay



Just to revisit a topic that's been discussed on this list, I deployed
a new Z-Mailer 2.99.55 system based on the Debian woody packaging and,
to my surprise and chagrin, found that despite my efforts I had an
open relay.  Perhaps I did too much, but I decided to settle on the
"sledgehammer" approach and edited canon.cf as per the attached
patch.  Anyone have comments or better solutions?

Also, I gather from earlier discussions that one has to be very
careful about putting an entry in db/localnames to match the name that
the 'hostname' command returns.  Is this correct and, if I had done
this, I wouldn't have had the open relay in the first place?

Thanks for any clarifications.

Regards,

-- 
Roy Bixler <rcb@ucp.uchicago.edu>
The University of Chicago Press
--- canon.cf.sav	Tue Oct 30 17:20:20 2001
+++ canon.cf	Mon Jul 21 16:04:09 2003
@@ -217,10 +217,10 @@
 		canonicalize "\2@\1"
 		return
 		;;
-	(.*)%([^%]*)				# rightmost '%', source routing
-		canonicalize "\1@\2"
-		return
-		;;
+	#(.*)%([^%]*)				# rightmost '%', source routing
+	#	canonicalize "\1@\2"
+	#	return
+	#	;;
 	tfist
 
 	echo "$address"
@@ -293,7 +293,7 @@
 	# convert old-style addresses to a domain-based address,
 	# order determines prec.
 	([^!]+)!(.+)	focus "\2<@\1.uucp>" ; return ;;   # uucp syntax
-	(.+)%([^%]+)	focus "\1<@\2>" ; return ;;	   # official %-kludge
+	#(.+)%([^%]+)	focus "\1<@\2>" ; return ;;	   # official %-kludge
 	([^:]+):(.+)	focus "\2<@\1>" ; return ;;	   # berknet syntax
 #	(.)\=(.+)	focus "\2<@\1.bitnet>" ; return ;; # bitnet kludge
 	tfiss