[Raw Msg Headers][Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
percent sign hack and open relay
Just to revisit a topic that's been discussed on this list, I deployed
a new Z-Mailer 2.99.55 system based on the Debian woody packaging and,
to my surprise and chagrin, found that despite my efforts I had an
open relay. Perhaps I did too much, but I decided to settle on the
"sledgehammer" approach and edited canon.cf as per the attached
patch. Anyone have comments or better solutions?
Also, I gather from earlier discussions that one has to be very
careful about putting an entry in db/localnames to match the name that
the 'hostname' command returns. Is this correct and, if I had done
this, I wouldn't have had the open relay in the first place?
Thanks for any clarifications.
Regards,
--
Roy Bixler <rcb@ucp.uchicago.edu>
The University of Chicago Press
--- canon.cf.sav Tue Oct 30 17:20:20 2001
+++ canon.cf Mon Jul 21 16:04:09 2003
@@ -217,10 +217,10 @@
canonicalize "\2@\1"
return
;;
- (.*)%([^%]*) # rightmost '%', source routing
- canonicalize "\1@\2"
- return
- ;;
+ #(.*)%([^%]*) # rightmost '%', source routing
+ # canonicalize "\1@\2"
+ # return
+ # ;;
tfist
echo "$address"
@@ -293,7 +293,7 @@
# convert old-style addresses to a domain-based address,
# order determines prec.
([^!]+)!(.+) focus "\2<@\1.uucp>" ; return ;; # uucp syntax
- (.+)%([^%]+) focus "\1<@\2>" ; return ;; # official %-kludge
+ #(.+)%([^%]+) focus "\1<@\2>" ; return ;; # official %-kludge
([^:]+):(.+) focus "\2<@\1>" ; return ;; # berknet syntax
# (.)\=(.+) focus "\2<@\1.bitnet>" ; return ;; # bitnet kludge
tfiss