Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Slight hole in the way Majordomo handles email.

From: Matt Carothers <matt () telepath com>
Date: Sat, 14 Aug 1999 17:33:31 -0500 (CDT)


On Sun, 15 Aug 1999, *****Psychotic wrote:


 well, if you're talking of problem which would allow you to send emails
directly to X-Y-Z-outgoing@... to avoid filtering and other rules
restriction, this's been known long ago. the only thing, I've figured out so
far (but which will increate cpu load on your machine, especially if you're 
running high-traffic list), is to generate random alias for *-outgoing every
time, i.g. foo-baz-JKHjhdf73-outgoing.

[...] 

other  thoughts?


Off topic, but interesting nonetheless.  How about this:

1. Move the *-outgoing aliases out to a new file.
2. Make a second sendmail.cf with the new file as an additional AliasFile and
   an alternate QueueDirectory writeable by the majordomo user (because
   sendmail won't run as root with -C).
3. Add "-C/path/to/new/sendmail.cf" to $sendmail_command in majordomo.cf 

This way sendmail only knows about the listname-outgoing aliases when majordomo
runs it.

- Matt
Previous By Date Next
Previous By Thread Next

Current thread: