Prefetch Technologies // Keeping your cache lines cozy

Archive

Posts in Email

Printing the entries in a sendmail queue

emailMar 23, 2005 1 min read

Since I began managing sendmail installations 8-years ago, I have used the mailq command to print the entries in the sendmail queue. While reading through the bat book to find the root cause of my sendmail DNS problems, I came across sendmail's "-bp" option: This provides the same results as the mailq command: I am still amazed at how complex the sendmail program is. Rule 0, Rule 3, Rule 5, 8000 macros ... ge gads!

$ read more →
earlier

Optimizing sendmail smart hosts

emailMar 19, 2005 2 min

While debugging an issue last week, I noticed some odd behavior when the Sendmail Smart host configuration directive (DS) was used. Smart hosts allow nodes to delegate mail delivery services to upstream devices, alleviating the need to run a full blown mail relay on each host. Smart hosts are configured with the Sendmail MC SMART_HOST directive, or through the sendmail.cf/submit.cf DS variable: While I was performing a packet capture to isolate a problem with mail delivery, I noticed that each outbound message triggered several odd DNS lookups: Upon closer inspection, I noticed that sendmail (actually the resolution libraries) were attempting to resolve the SMTP relay along with each entry in the search path. To fix this issue ( I think it's an issue, since it's wasting bandwidth and CPU cycles), I fully qualified the smart host in my submit.cf: Once this was changed, and sendmail was restarted, the resolver only requested entries for the FQDN: I just dusted off my bat book, and hope to find an MC setting to disable MX lookups for the smart host…

$ read more →

Binding sendmail to the loopback interface

emailJan 6, 2005 1 min

The sendmail SMTP server comes with the vast majority of UNIX Operating systems, and is configured to listen for new connections on TCP ports .25 (SMTP) and.587 (MSP) by default. For workstation and servers that aren't responsible for mail delivery, this can cause chaos when a new sendmail exploit is released into the wild. This behavior can be changed by adjusting the "DaemonPortOptions" in the sendmail configuration file (usually /etc/mail/sendmail.cf). The default configuration looks similar to the following: If we add "Addr=127.0.0.1" to each entry, sendmail will only listen for new connections on the loopback interface: Once the changes are integrated into the sendmail.cf file ( hand editing the sendmail.cf file or using M4 macros ), sendmail needs to be restarted…

$ read more →