Re: May be forged?
On Friday, 19 September 2003 at 3:20:21 +, Mark wrote: On Friday, September 19, 2003 2:44 AM, Mark wrote: Thanks to Kris I found the new sendmail. :) But a slight anomaly occurs in 8.12.10: AUTH=server, relay=my-xp-machine.net [192.168.1.3] (may be forged), authid=admin That is odd; why would it suddenly say may be forged? Hmm, this wouldn't, by any chance, have anything to do with Verisign's latest DNS crap, would it? Kinda like a preemptive caution that a net domain might be fake? No, this is the result of a failed reverse DNS lookup or a failed consistency check between forward and reverse DNS. Given that the address is in the non-routable RFC 1918 range, this is to be expected. Then why does it not occur in 8.12.9? If I start my 8.12.9 sendmail, it does NOT say may be forged. Did something change in-between versions? It would seem so. Here is why I think it seems related to Verisign somehow: asarian-host: {root} % nslookup my-xp-machine.net Name:my-xp-machine.net Address: 64.94.110.11 Ah. But this is an invalid domain. Maybe 8.12.10 picks up on the IP-mismatch? But we're looking at the reverse lookup first. There's no global reverse lookup for that network, but that doesn't mean that there aren't local name servers which handle it. But that still does not explain why my 8.12.9 sendmail does not say may be forged. And if I change /etc/hosts to have 192.168.1.3 called my-xp-machine.ORG, then the error goes away, in 8.12.10 too! Yes, that's a feature, not a bug. Greg -- When replying to this message, please copy the original recipients. If you don't, I may ignore the reply or reply to the original recipients. For more information, see http://www.lemis.com/questions.html See complete headers for address and phone numbers pgp0.pgp Description: PGP signature
Re: May be forged?
On Friday, 19 September 2003 at 3:20:21 +, Mark wrote: On Friday, September 19, 2003 2:44 AM, Mark wrote: Thanks to Kris I found the new sendmail. :) But a slight anomaly occurs in 8.12.10: AUTH=server, relay=my-xp-machine.net [192.168.1.3] (may be forged), authid=admin That is odd; why would it suddenly say may be forged? Hmm, this wouldn't, by any chance, have anything to do with Verisign's latest DNS crap, would it? Kinda like a preemptive caution that a net domain might be fake? No, this is the result of a failed reverse DNS lookup or a failed consistency check between forward and reverse DNS. Given that the address is in the non-routable RFC 1918 range, this is to be expected. Then why does it not occur in 8.12.9? If I start my 8.12.9 sendmail, it does NOT say may be forged. Did something change in-between versions? It would seem so. Here is why I think it seems related to Verisign somehow: asarian-host: {root} % nslookup my-xp-machine.net Name:my-xp-machine.net Address: 64.94.110.11 Ah. But this is an invalid domain. Yes, it is the name of my XP machine within the network. :) But that still does not explain why my 8.12.9 sendmail does not say may be forged. And if I change /etc/hosts to have 192.168.1.3 called my-xp-machine.ORG, then the error goes away, in 8.12.10 too! Yes, that's a feature, not a bug. I do not quite understand this. Why would it not say may be forged when de domain name ends in .org? At any rate, I installed 8.12.10 now, changed the name of my XP machine to end in .org; and, for the rest, everything seems to work wonderfully. So, whatever that small change between versions may have been, it must be a minor thing. I just wanted to make sure I had not compiled the new sendmail horribly wrong. Everything is ok now. :) Thanks for your help, - Mark ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
May be forged?
Thanks to Kris I found the new sendmail. :) But a slight anomaly occurs in 8.12.10: AUTH=server, relay=my-xp-machine.net [192.168.1.3] (may be forged), authid=admin That is odd; why would it suddenly say may be forged? That makes no sense. Switched back to 8.12.9, and everything is ok again: AUTH=server, relay=my-xp-machine.net [192.168.1.3], authid=admin I compiled it as follows: make SENDMAIL_WITHOUT_IPV6=yes SENDMAIL_WITH_SMTPS=yes SENDMAIL_WITH_SASL2=yes Before, I think I used SENDMAIL_WITH_TLS=yes, instead of SENDMAIL_WITH_SMTPS=yes. Is there someone who can explain this? Or better, who knows how to fix it? :) - Mark ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: May be forged?
- Original Message - From: Mark [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Friday, September 19, 2003 2:44 AM Subject: May be forged? Thanks to Kris I found the new sendmail. :) But a slight anomaly occurs in 8.12.10: AUTH=server, relay=my-xp-machine.net [192.168.1.3] (may be forged), authid=admin That is odd; why would it suddenly say may be forged? Hmm, this wouldn't, by any chance, have anything to do with Verisign's latest DNS crap, would it? Kinda like a preemptive caution that a net domain might be fake? - Mark ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: May be forged?
On Fri, Sep 19, 2003 at 12:43:37AM +, Mark wrote: Thanks to Kris I found the new sendmail. :) But a slight anomaly occurs in 8.12.10: AUTH=server, relay=my-xp-machine.net [192.168.1.3] (may be forged), authid=admin That is odd; why would it suddenly say may be forged? That makes no sense. This means that while there *is* a reverse entry for 192.168.1.3, the result that came back for the IP doesn't have a forward lookup. -- Jonathan Chen [EMAIL PROTECTED] -- Power corrupts, Absolute Power is pretty neat ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: May be forged?
On Friday, 19 September 2003 at 0:56:04 +, Mark wrote: - Original Message - From: Mark [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Friday, September 19, 2003 2:44 AM Subject: May be forged? Thanks to Kris I found the new sendmail. :) But a slight anomaly occurs in 8.12.10: AUTH=server, relay=my-xp-machine.net [192.168.1.3] (may be forged), authid=admin That is odd; why would it suddenly say may be forged? Hmm, this wouldn't, by any chance, have anything to do with Verisign's latest DNS crap, would it? Kinda like a preemptive caution that a net domain might be fake? No, this is the result of a failed reverse DNS lookup or a failed consistency check between forward and reverse DNS. Given that the address is in the non-routable RFC 1918 range, this is to be expected. Greg -- When replying to this message, please copy the original recipients. If you don't, I may ignore the reply or reply to the original recipients. For more information, see http://www.lemis.com/questions.html See complete headers for address and phone numbers pgp0.pgp Description: PGP signature