sendmail has been updated from 8.9.3 to 8.11.0. Some of the more visible
changes that may immediately affect your configuration include:
- New default file locations from src/contrib/sendmail/cf/README
- newaliases limited to root and trusted users
- MSA port (587) turned on by default
- New que
hetzels> Sendmail 8.11 has the ablity to due secure authentication with
hetzels> mail clients when compiled with Cyrus-SASL.
hetzels> Will the Cyrus-SASL library be imported to provide this
hetzels> capability? Or at least a make.conf variable.
My first step in the process was to get sendmail u
ticso> Getting STARTTLS also means putting sfio into base.
Actually, it wouldn't. I was able to get Torek I/O working with STARTTLS
as an FFR. I'm running with STARTTLS at home without using sfio.
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-current" in the body o
DougB> I'm seeing a small problem with up to the minute sources in the install
DougB> phase:
DougB> + cp /etc/aliases /etc/mail/aliases
DougB> cp: not found
DougB> *** Error code 127
That is odd considering the step right before it uses 'mv' which is located
in /bin/ (where 'cp' also lives). I
ache> To see the bug, just send any mail to yourself.
ache> Received: (from ache@localhost)
ache> by nagual.pp.ru (8.11.0/8.11.0) id e7DIV4a34899
ache> for [EMAIL PROTECTED]; Sun, 13 Aug 2000 22:31:04 +0400 (MSD)?g
ache> ^
ache> (envelope-from ache)
ache> ^^^
Thanks for the report, fixe
ume> Beacuse default confCW_FILE doesn't have -o option, freebsd.mc should
ume> have "define(`confCW_FILE', `-o /etc/mail/local-host-names)dnl" line.
ume> Unless this, /etc/mail/local-host-names will be mandatory.
Good point. I've fixed this.
ume> BTW, I love to see
ume> DAEMON_OPTIONS(`Name=M
jhay> There is just an annoying message because of the anycast address:
jhay> Aug 13 16:38:47 angel sendmail[11947]: gethostbyaddr(3ffe:2900:fffa:4::) failed:
1
jhay> Is that because of a configuration error or just because sendmail needs
jhay> to check for anycast addresses?
sendmail tries to
gshapiro> Can you see if this patch makes the error go away?
gshapiro> Index: conf.c
gshapiro> ===
A better patch:
Index: conf.c
===
RCS file: /cvs/sendmail/conf.c,v
r
ps> has anyone tested using a Archos 6000 (using a isd200 interface) with the
ps> umass driver under freebsd?
Just bought one (the 20G version but same interface) this weekend and can
verify that it does not work with -STABLE. I also saw the Linux driver but
I don't know the USB code at all. Ho
ticso> Does it get connectet to umass?
No, ugen.
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-current" in the body of the message
ticso> Can anyone with such a drive please mail the complete specification?
ticso> Apply the attached patch and mail the usbdevs -v output.
Here you go:
port 1 addr 2: self powered, config 1, USB Storage Adapter(0x0031), In-System
Design(0x05ab), rev 0x0100, class 0xff, subclass 0x00, protocol
I am seeking volunteers to review and test the infrastructure changes
needed to import sendmail 8.12.2 into FreeBSD (-CURRENT). If you are
interested in helping, please visit:
http://people.freebsd.org/~gshapiro/CURRENT-8.12.2
and following the instructions there. Please report any successes o
mi> FreeBSD comes with sendmail, and milter is an increasingly popular part
mi> of sendmail -- used by the authors of different spam and virii filtering
mi> software.
mi> Shouldn't FreeBSD build and install libmilter and the relevant headers,
mi> too?
It will do so when 8.12 is imported. See:
mi> Great! The TLS support will be there too, right? Thanks!
Yes (as it already is in FreeBSD).
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-current" in the body of the message
I've created a new patch to deal with a problem found during testing
(thanks to David Wolfskill). This should fix sites who use
sendmail_enable="NO" but still want to be able to process command line
mail -- we still need a localhost-only SMTP daemon to accept command line
mail. Complete details
>> http://people.freebsd.org/~gshapiro/CURRENT-8.12.2
ache> +CFLAGS+=-pthread
ache> ^
ache> Why you add -pthread? IMHO it is needed only on program building 'ld'
ache> phase and not in library building. See libc_r/Makefile
Thanks, I've changed that line to:
CFLAGS+=-D_THREAD_S
I'm about to begin the import of sendmail 8.12.2 into -CURRENT. While I am
doing the important, it's likely that a buildworld will fail. I'll post
again when I'm done (expected to take about 15 to 20 minutes).
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-current" in
gshapiro> I'm about to begin the import of sendmail 8.12.2 into -CURRENT.
gshapiro> While I am doing the important, it's likely that a buildworld
gshapiro> will fail. I'll post again when I'm done (expected to take about
gshapiro> 15 to 20 minutes).
The import and infrastructure commits are comp
sendmail 8.12.2 has been imported into -CURRENT.
sendmail 8.12 has been developed with two main topics in mind: enhanced
security and better performance. sendmail is by default not set-user-ID
root anymore which avoids potential local root exploits. See
/etc/mail/README (after running mergemast
msmith> I've noticed that 'make world' spams the ownership of
msmith> src/contrib/sendmail/cf, leaving it owned by root. This is bad. 8)
I'll fix this as soon as I get back from the east coast (Monday, assuming
the snow storm they are expecting waits until I am in the air before
hitting).
To Un
root> I am using the standard freebsd.mc created during a buildworld. I
root> have started noticing that I am missing/rejecting a lot of emails
root> from places like: yahoogroups.com.
It would be helpful to show the actual log message so we can determine why
it is being rejected. If it is some
tlambert> Who is the maintainer of this code?
I maintain sendmail.
tlambert> They appear to use SOMAXCONN, incorrectly.
tlambert> The value of SOMAXCONN is not valis; the valid limit is only
tlambert> obtainable from sysctl (kern.ipc.somaxconn).
We (Sendmail) will look at integrating your fix
ache> wi-ftpd already have OPIE hooks, but I not sure they works. Popper needs
ache> modifications. Doesn't know, if other ports using Skey exists.
security/sudo uses it:
> sudo ldd /usr/local/bin/sudo
Password [ s/key 135 ho9319 ]:
/usr/local/bin/sudo:
libmd.so.2 => /usr/lib/libmd.so.2
djhill> Reading Advanced Programming in the UNIX Environment by Richard
djhill> W. Stevens, I see that he says that vfork() should be used instead
djhill> of fork() when you just need to use one of the exec() functions,
djhill> since it doesn't need to fully copy the address space.
djhill> Later
mark> Recent enabling of -D_FFR_TLS_O_T in revision 1.18 of
mark> src/etc/mail/Makefile doesn't seem to sit well with access_db
It was reverted yesterday when Nick Sayer posted the same problem in
freebsd-stable.
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-current" i
jwright> freebsd:/etc# newaliases
jwright> /etc/aliases: 41 aliases, longest 56 bytes, 784 bytes total
jwright> hash map "Alias1": unsafe map file
jwright> /usr/local/majordomo/aliases.majordomo.db: Permission denied WARNING: cannot
open alias database /usr/local/majordomo/aliases.majordomo Canno
There are some sendmail related changes I would like to make in the next
few days. Some may be controversial so I am sending out this mail first.
I would appreciate feedback on any of these items. If I don't hear any
major objections, I'll go ahead with the changes.
1. Use sendmail's version of
The following changes have been made in -CURRENT:
1. mail.local(8) is no longer installed as a set-user-id binary.
If you are using a /etc/mail/sendmail.cf from the default sendmail.cf
included with FreeBSD any time after 3.1.0, you are fine. If you are
using a hand-configured sendmail
sobomax> Please fix breakage (see attached logs).
I've removed STARTTLS support for time being.
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-current" in the body of the message
The STARTTLS version of sendmail has been added in
src/secure/usr.sbin/sendmail/. src/usr.sbin/sendmail will continue to be
the non-STARTTLS version for those who do not have the secure distribution
installed.
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-current" in
leifn> Is there a way to make make world use my own sendmail.mc?
There will be soon. I hope to have it in place before or during BSDcon.
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-current" in the body of the message
knu> Would you add an UPDATING entry for this? Many people have been
knu> reporting problems with the local mailer not knowing these changes.
I gave the information to Warner, the maintainer of the UPDATING file.
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-current"
janb> the rc.conf on my computer sets the sendmail enable flag to NO, and
janb> yet on bootup the sendmail daemon is started. ps -ax confirms this
janb> with sendmail: accepting connections
At least as of November 6th, the only rc.conf files are
/etc/defaults/rc.conf, /etc/rc.conf, and /etc/rc.co
janb> OOPs, well this was the problem. That leaves me wondering, why this is on
janb> two places...
/etc/defaults/rc.conf are the defaults -- you should not be editing that
file. Any settings you want to change to in /etc/rc.conf (which should be
a small file, not a copy of /etc/defaults/rc.conf
dcs> Ok, I found the query packets, on the loopback:
dcs> [root@piratinga root]# tcpdump -ni lo0 -s1500
dcs> tcpdump: listening on lo0
dcs> 11:54:05.602126 127.0.0.1.49202 > 127.0.0.1.53: 41012+ PTR?
dcs> 17.199.31.172.in-addr.arpa. (44)
dcs> 11:54:10.605353 127.0.0.1.49203 > 127.0.0.1.53: 4101
swear> BTW, I was suprised to find several help files only under /usr/src
swear> and the Sendmail Installation and Operation only under that and not
swear> yet built from the source "op.me". (PR worthy?)
op.me is built and installed in /usr/share/doc/smm/08.sendmailop/.
cf/README is installed as
kutulu> I upgraded my system last night to the latest -CURRENT and noticed
kutulu> a change in the daily mail cleanup. Unfortunately, I'm not running
kutulu> sendmail, so now I'm getting:
kutulu> Removing stale entries from sendmail host status cache:
kutulu> sendmail: fatal: unsupported: -bH
ku
nunotex> sendmail_enable="NONE" doesn't appear in /etc/defaults/rc.conf. Can
nunotex> anyone update this file to include "NONE" option?
This was done on purpose:
Revision 1.158, Tue Sep 3 22:15:54 2002 UTC (6 months ago) by gshapiro
Branch: MAIN
Deprecate the use of sendmail_enable="NONE" as it
> I have SENDMAIL_MC and SENDMAIL_SUBMIT_MC defined in /etc/make.conf
> (both with the full path, i.e. /etc/mail/...). From the documentation
> I take it, that this should work. My installworld however breaks because
> src/etc/sendmail/Makefile strips the pathname from the variables before
> trying
> The problem (I think) is in src/etc/sendmail/Makefile:
>
> .if defined(SENDMAIL_MC)
> INSTALL_CF= ${SENDMAIL_MC:T:R}.cf
>
> This leaves INSTALL_CF with fokus.cf (the path is stripped off) and
> there is (of course) no fokus.cf in src/etc/sendmail.
But there should be one in /usr/obj/usr/src/
cfowler> Is there a way to configure sendmail on my 4.7 system to keep a backup
cfowler> of all mail going out?
http://www.sendmail.org/faq/section4.html#4.20
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-current" in the body of the message
evantd> Sendmail has not been working on my system for some time now. I
evantd> can't say exactly how long, but my guess is that it broke when I
evantd> upgraded to RELENG_5_0. This is how sendmail is invoked (by
evantd> default) and it's output.
evantd> # sendmail -L sm-mta -bd -q30m -ODaemonPort
> Generally, sendmail uses flock() on the aliases file and related databases
> to ensure consistency. As far as I know, it's unrelated to redirection.
And for locking queue files.
> > Here is what Control-T does
> > load: 0.20 cmd: sendmail 292 [pause] 0.02u 0.04s 0% 2016k
>
> pause, eh? That
> When I get to the point of "make" sendmail I get the following error
>
> At the end of the make process I get
>
> CC: /usr/src/lib/libsmutil/libsmutil.a: No such file or
> directory
> CC: /usr/src/lib/libsm.a: No such file or directory
> *** Error code 1
If you haven't done
> > mergemaster -dv
>
> [snip]
>
> cd /usr/src/etc/sendmail; make distribution
> install -o root -g wheel -m 644 /usr/src/etc/sendmail/freebsd.mc freebsd.cf
> /var/tmp/temproot.0707.11.55/etc/mail
> install: freebsd.cf: No such file or directory
> *** Error code 71
Thanks, I just committed a f
sgk> install -C -o root -g wheel -m 755 -d /usr/share/sendmail/cf
Did you override $INSTALL in /etc/make.conf?
sgk> It seems [EMAIL PROTECTED] forgot to place an entry
sgk> in src/UPDATING that he purposely broke world.
I'm curious what Makefile's are supposed to use if not ${INSTALL}.
To Unsu
>> Normally OPIE not accepts plain Unix password remotely, and it is right,
>> because of cleartext. But it is wrong for sshd, because no cleartext
>> sended for PasswordAuth. It seems that opieaccess in pam.d/sshd should not
>> fails by default or maybe even not present there.
des> What if the c
>>>>> "ache" == Andrey A Chernov <[EMAIL PROTECTED]> writes:
ache> On Tue, Jul 09, 2002 at 09:46:40 -0700, Gregory Neil Shapiro wrote:
>>
>> one of the authentication techniques early on). Also, pam_opieaccess is
>> broken at the moment
If I may suggest a fix that will probably make everyone happy...
The problem seems to be the addition of opieaccess to the PAM
configuration. With that addition, in -CURRENT, unless a user creates
/etc/opieaccess and adds explicit "permit" lines, plain text passwords will
not be accepted if OPIE
pmedwards> The last commit to this appears to have broken it. "main()" was
pmedwards> updated to include envp, but "crunched_main()" calls "main()"
pmedwards> without the extra argument.
pmedwards> This causes make release of -current on -stable to barf for me,
pmedwards> so I can't truly test th
pmedwards> The last commit to this appears to have broken it. "main()" was
pmedwards> updated to include envp, but "crunched_main()" calls "main()"
pmedwards> without the extra argument.
pmedwards> This causes make release of -current on -stable to barf for me,
pmedwards> so I can't truly test th
makonnen> I would like to be able to continue doing everything short of
makonnen> install as a regular user. Is it really necessary to require root
makonnen> privs to buildworld?
Agreed. I haven't been able to come up with a way to convince make to
adjust the destination path according to the so
gordont> There is one outstanding issue with the sendmail script that I'm working on
gordont> a solution for. In the general case it should work fine. If you set
gordont> sendmail_enable="NONE" it will echo a benign warning about it being set
gordont> improperly.
I've been discussing the issue wi
Should committers be updating those files when they update /etc/rc? If so,
I'll need to change the sendmail startup routines.
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-current" in the body of the message
sgk> Cvsup was run this morning (23 Mar 02) at 0623 PST.
sgk> After the standard "make" sequence and installation
sgk> of a new kernel. The following appears during the
sgk> boot process (apologies for long lines).
sgk> Mar 23 09:04:30 12-230-81-20 sm-queue[181]: NOQUEUE: SYSERR(root): fill_fd:
An issue came up on freebsd-stable today regarding the boot-time startup of
sendmail for users who are using other MTAs. The end result was that users
needed a way to completely prevent sendmail from trying to start at boot
time.
The current order of operations at boot time is:
# MTA
if ${sendm
keramida> I am not sure if duplicating the code of etc/rc in
keramida> etc/mail/Makefile is something I am really happy about though.
keramida> This means that anyone who wants to make changes to etc/rc should
keramida> remember to update etc/mail/Makefile too.
Yes, I really hope the /etc/rc.d wo
keramida> Aye. Until there is a more NetBSD'ish way of calling sendmail in
keramida> /etc, we can probably get away with a note in /etc/rc that says
keramida> "If you make changes related to Sendmail in this file, please
keramida> update *that* file too." Can we put something like this in
kerami
I've been purposefully trying to avoid getting involved with the entire
"should sendmail be in the base OS" debate as my input would obviously
be biased. However, avoiding a response has become more and more
difficult as I've seen unanswered questions, misinformation, and as of
late, people eithe
andre.albsmeier> One thing I don't understand here (for the case someone
andre.albsmeier> sets ${sendmail_enable} to NO):
andre.albsmeier> Both, ${sendmail_outbound_enable} and
andre.albsmeier> ${sendmail_submit_enable} are on by
andre.albsmeier> default. ${sendmail_outbound_flags} ist set to:
a
thomas> Hum. If we make the assumption that non-Sendmail-users use some
thomas> other MTA installed through a port or locally, then I guess that
thomas> MTA should be expected to be started from a /usr/local/etc/rc.d script,
thomas> so maybe the new variable mta_startup_script is overkill.
They c
Given that non-sendmail users will be inconvenienced when upgrading due to
the 8.12 changes (need to change sendmail_enable from "NO" to "NONE"), I
thought it might be better to give them something back for their trouble.
As an alternative to sendmail_enable=NONE, why not solve the boot time
prob
Jan.Grant> Hang on, what problem? I think you've already done this: if you use
Jan.Grant> sendmail_enable = "YES"
Jan.Grant> sendmail_flags = "whatever you normally use"
And:
sendmail_msp_queue_enable="NO"
Jan.Grant> and configer /etc/mail/mailer.conf properly, then if your MTA
Jan.Grant> was
>> > Also shouldn't host(1) obey /etc/nsswitch.conf?
>> No. host(1) is a dns specific tool.
obrien> *sigh*. So how does one figure out what amd and sendmail are seeing as
obrien> they try to resovlve addresses?
In sendmail's case:
sendmail -d8.8 _rest of args here_
Don't run a daemon with t
>> Given that non-sendmail users will be inconvenienced when upgrading due to
>> the 8.12 changes (need to change sendmail_enable from "NO" to "NONE"),
des> Why? It doesn't make any difference as long as one uses the
des> mailwrapper stuff:
des> des@des ~% grep sendmail /etc/rc.conf
des> sendma
ianjhart> One small quibble. If I want to set
ianjhart> mta_start_script=""
ianjhart> and run rc.sendmail(.sh) from /usr/local/etc/rc.d
ianjhart> shouldn't "stop" kill both queues? You'd need to add
ianjhart> a stop-mtaq obviously.
ianjhart> A global restart might be nice too.
Yes, rc.sendmail s
keramida> A better fix would be to use the sh(1) way of conditionally setting a
keramida> variable:
keramida> sendmail_program=${sendmail_program:-/usr/sbin/sendmail}
keramida> Similarly for the rest of those ?= assignments.
keramida> AFAIK, the ?= assignment style works in make rules.
keramida>
>> In a somewhat unrelated note, I also plan on arranging to move the
>> sendmail-specific stuff out of src/etc/mail/ and into src/etc/sendmail so
>> the installation of things like sample sendmail maps, etc. don't clutter a
>> NO_SENDMAIL installation. I'll need to arrange this event with the CV
Thanks to some reviewers, a couple of problems with my last patch have been
fixed. This time, I've actually tried the combinations involved to make
sure it works. The changes from the last patch are only to
/etc/mail/Makefile and /etc/rc.sendmail.
rc.sendmail changes:
- Use proper shell variab
As discussed earlier in the mailing list, I've committed what will
hopefully be the final round of sendmail startup changes:
--- start of forwarded message (RFC 934 encapsulation) ---
From: Gregory Neil Shapiro <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED], [EMAIL PROTECTED]
S
fenner> Anyway, that was really a long way of saying: should this be
fenner> documented somewhere? Like, prominently in the mailq man page?
I'll add something to the man page. I've also updated
/etc/periodic/daily/{440.status-mailq,500.queuerun}.
fenner> And, addressing the initial failure its
DougB> My proposal is simple. Change from using names to numeric [ug]id's
DougB> in mtree, and elsewhere if needed. The plus is that it solves the
DougB> bootstrapping problem. The negatives involve problems with systems
DougB> that don't merge the password and group files, and therefore will
Doug
One more change please. Change:
> +"email, but still enables sendmail for outbound mail. None disables\n"
> +"sendmail completely at startup.",
To:
> +"email, but still enables sendmail for local and outbound mail.\n"
> +"None disables sendmail completely at startup and disabl
73 matches
Mail list logo
