On Wed Jan 15, 2003 at 03:35:52PM -0500, Tibbetts, Ric wrote: [...] > >Here's something to think about, what if the portsentry didnt get > >completely > >removed, and left some cruft.. some of which happens to be blocking port > >25 > > What & where? > I took portsentry out of the startup, and rebooted the box. So it was > never run. I've also gone in, and tried "taming" it, to NOT block TCP
rpm -e portsentry
If you're not using it, get rid of it, entirely.
Check /etc/hosts.{allow,deny} make sure there is nothing in there
restricting port 25.
Execute "iptables -L|grep smtp; iptables -L|grep 25" and see if you
have any entries in there; see if iptables has blocked it. I've never
played with bastille for a firewall, so have no clue how "solid" that
is.
Finally, "netstat -l --tcp -p". This will tell you what program is
listening on what TCP port. Make sure something is listening to port
25 (and *not* to localhost.localdomain:25, but to eth0 or whatever your
interface is), and see if it's postfix.
Sending mail out is no tricky feat. More often that not, programs will
use /usr/sbin/sendmail or /usr/lib/sendmail directly... the ability to
send mail out does not determine whether or not an MTA is running; not
definitively anyways.
--
MandrakeSoft Security; http://www.mandrakesecure.net/
"lynx -source http://linsec.ca/vdanen.asc | gpg --import"
{FE6F2AFD : 88D8 0D23 8D4B 3407 5BD7 66F9 2043 D0E5 FE6F 2AFD}
msg64388/pgp00000.pgp
Description: PGP signature
