TCLUG Archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [TCLUG:18672] Hidding SMTP info?
There's a line in your sendmail.cf that allows you to masquerade as a particlar
domain.
For example, My line is set to masquerade as ardent-hacker.net rather than
armageddon.ardent-hacker.net. All other machines are also masqueraded as well.
goofy.ardent-hacker.net--->ardent-hacker.net
forefront.ardent-hacker.net--->ardent-hacker.net
and even:
mailserver.ardent-hacker.net--->ardent-hacker.net
hope this helps.
Eric F Crist
On Thu, 08 Jun 2000, you wrote:
> Our network behind the firewall has grown to a point where we now have a
> central mail server, which all client machines relay their email to. This
> central server then works with the firewall to securely deliver the smtp
> traffic to the Internet.
>
> The problem is now there is a 'security' problem because sendmail stamps the
> message at each hop, so our internal domain is being broadcast to the world.
>
> For instance, you get
>
> Received: (from tanner@localhost)
> by bobs.machine.real-time.com (8.10.2/8.10.2) id e587MZb06706;
> Thu, 8 Jun 2000 02:22:35 -0500
>
> Here you can see that our internal domain is 'machine.real-time.com' and that
> my computer's host name is 'bobs'.
>
> Received: (from tanner@bobs.machine.real-time.com)
> by mailserver.machine.real-time.com (8.10.2/8.10.2) id e587MZb06706;
> Thu, 8 Jun 2000 02:22:35 -0500
>
> Here you can see that our internal domain is 'machine.real-time.com' and that
> the central mail server is called mail server.
>
> etc, etc, etc...
>
> Anyone to protect this info?
>
>
> --
> Bob Tanner <tanner@real-time.com> | Phone : (952)943-8700
> http://www.mn-linux.org | Fax : (952)943-8500
> Key fingerprint = 6C E9 51 4F D5 3E 4C 66 62 A9 10 E5 35 85 39 D9
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: tclug-list-unsubscribe@mn-linux.org
> For additional commands, e-mail: tclug-list-help@mn-linux.org