Hi everybody,
Some @#%^%& spammer decided to abuse my mailserver today,
and it ended up in orbs.
I really want to fix this, but need some help.
I have the following setup:
qmail 1.03 with ucspi and daemontools
vpopmail
sqwebmail
I am hosting mail for 7 domains, all connecting to the server via a
10.40 address range.
I created /etc/tcp.smtp as follows:
10.40.:allow,RELAYCLIENT=""
:allow
and created the tcp.smtp.cdb file from that.
In /etc/qmail/locals I have just the domainname of the server.
In /etc/qmail/control/rcpthosts I have the names of the 7 domains
In /etc/tcpcontrol there are 2 files: pop-3.rules and smtp.rules
both these files have all 7 domainnames with
:allow,RELAYCLIENT="" after each domainname
(this was installed with qmail?)
/etc/rc.d/init.d/smtpd looks like this:
-------------------->
#!/bin/sh
#
# chkconfig: 345 81 30
# description: The SMTP daemon for qmail with optional RBL blocking.
#
#
# Set standard values
#
SERVICE=smtpd
PROGRAM=/var/qmail/bin/qmail-smtpd
PORT=smtp
#THISUID=0
#THISGID=0
#CONCURRENT=15
LOGFACILITY=2
# Source function library.
. /etc/rc.d/init.d/qmail-functions
readdefault CONCURRENT concurrencysmtpd 20
THISUID=`id -u qmaild`
THISGID=`id -g qmaild`
#
# Uncomment these lines when testing or set a HOSTNAME is you want something
# else than the cananonical name for this host
#
#HOSTNAME=`/bin/hostname`
#HOST="-l $HOSTNAME"
#
# Security Options. Set SECURITY level to one of the following
#
RELAXED="-RHPo"
BASIC="-rhPO"
NORMAL="-rhPO"
PARANOID="-rhpO"
SECURITY="$RELAXED"
# Source function library.
. /etc/rc.d/init.d/functions
# Source networking configuration.
. /etc/sysconfig/network
# Check that networking is up.
[ ${NETWORKING} = "no" ] && exit 0
#
# Setup TCPSERVER execution
#
# If antirbl is installed, process antirbldomains
if [ -x /usr/bin/antirbl ]; then
readdefault DOMAINS antirbldomains ""
for DOMAIN in $DOMAINS; do
RBL="$RBL /usr/bin/antirbl $DOMAIN"
done
fi
# If rblsmtpd is installed, process rbltimeout and rbldomains
if [ -x /usr/bin/rblsmtpd ]; then
readdefault TIMEOUT rbltimeout 60
readdefault DOMAINS rbldomains rbl.maps.vix.com
for DOMAIN in $DOMAINS; do
RBL="$RBL /usr/bin/rblsmtpd -t $TIMEOUT -r $DOMAIN"
done
fi
if [ -n "$RBL" ]; then
PROGRAM="$RBL qmail-pipe fixcr -- $PROGRAM"
fi
DAEMON="tcpserver -u $THISUID -g $THISGID -c $CONCURRENT -v \
$SECURITY -x /etc/tcpcontrol/$SERVICE.cdb $HOST 0 $PORT $PROGRAM | $LOGGER"
#
# Now execute the start-stop checking
#
. /etc/rc.d/init.d/tcpserver-functions
-------------------->
But with this the server still relays mail for anyone.
What did I miss here ?
I really hope someone can help me out here, I am hopelessly stuck
Thanks
Dewald
