Basic Sendmail Configuration and Operation

Previous page
Table of content
Next page
 < Day Day Up > 

Because Sendmail is the Fedora default client (and the mostly widely used client), the following sections provide a brief explanation and examples for configuring and operating your email system. As mentioned earlier, however, Sendmail is an extremely complex program with a very convoluted configuration. As such, this chapter only covers some of the basics. For more information on Sendmail, as well as other MTAs, see the "Reference" section at the end of this chapter.

Sendmail configuration is handled by files in the /etc/mail directory with much of the configuration being handled by the file sendmail.cf. The actual syntax of the configuration file, sendmail.cf, is cryptic (see the following example). In an attempt to make it easier to configure Sendmail, the sendmail.mc file was created. The following example belies that goal, however. The sendmail.mc file must be processed with the m4 macro processor to create the sendmail.cf file; the needs of that processor account for the unusual syntax of the file. You will learn how to use it later, and we will look at a Perl script that automates and simplifies the entire process. First, let us examine some basic configuration you might want to do with Sendmail.

NOTE

sendmail.cf has some strange syntax because of the requirements of the m4 macro processor. You do not need to understand the details of m4 here, but note the quoting system. The starting quote is a backtick (`), and the ending quote is simply a single quote ('). Also, the dnl sequence means to "delete to new line" and causes anything from the sequence up to and including the newline character to be deleted in the output.

Here's a look at an excerpt from the sendmail.cf file:

 CP. # "Smart" relay host (may be null) DS # operators that cannot be in local usernames (i.e., network indicators) CO @ % ! # a class with just dot (for identifying canonical names) C.. # a class with just a left bracket (for identifying domain literals) C[[ # access_db acceptance class C{Accept}OK RELAY C{ResOk}OKR # Hosts for which relaying is permitted ($=R) FR-o /etc/mail/relay-domains

And here's a quote from the sendmail.mc file for comparison:

 dnl define(`SMART_HOST',`smtp.your.provider') define(`confDEF_USER_ID',``8:12'')dnl undefine(`UUCP_RELAY')dnl undefine(`BITNET_RELAY')dnl dnl define(`confAUTO_REBUILD')dnl define(`confTO_CONNECT', `1m')dnl define(`confTRY_NULL_MX_LIST',true)dnl

You can see why the file is described as "cryptic."


Rather than involve you in a detailed description of hand editing a file known to be among the most difficult to edit with success, we will examine a Perl script developed by Donncha O'Caoimh. The script automates the configuration of Sendmail by prompting you for information and then doing all the heavy work by modifying the Sendmail configuration file itself. The script sets up a network mail server on a home computer running Fedora. To use the script, you will need to know your email address, the login names and passwords of all mail users, your mail server addresses and the network's IP address. When you are done, Sendmail and Fetchmail will be configured. Running the script not only prompts you for all the necessary information, but it even provides some explanation and help along the way.

You should have Sendmail and Fetchmail installed on your system before you begin. The script is available for download at http://cork.linux.ie/projects/install-sendmail/. Simply uncompress the archive:

 $ tar -zxvf install-sendmail-5.5.tar.gz

Now use the cd command to change to the newly created directory.

You can read a great description of this script and its use in the previously mentioned site's README, FAQ, and INSTALL files. You should read these files before you proceed with the installation; they are well-written and will answer all the questions you have. If you are interested in the power of programming with Perl, see Chapter 29, "Using Perl."

Of course, you can always configure Sendmail by hand, especially if you need any advanced options. The following five sections address some commonly used advanced options.

Configuring Masquerading

Sometimes you might want to have Sendmail masquerade as a host other than the actual hostname of your system. Such a situation could occur if you have a dial-up connection to the Internet and your ISP handles all your mail for you. In this case, you will want Sendmail to masquerade as the domain name of your ISP. For example,

 MASQUERADE_AS(`samplenet.org')dnl

Using Smart Hosts

If you do not have a full-time connection to the Internet, you will probably want to have Sendmail send your messages to your ISP's mail server and let it handle delivery for you. Without a full-time Internet connection, you could find it difficult to deliver messages to some locations (such as some underdeveloped areas of the world where email services are unreliable and sporadic). In those situations, you can configure Sendmail to function as a smart host by passing email on to another sender rather than attempting to deliver the email directly. You can use a line such as the following in the sendmail.mc file to enable a smart host:

 define(`SMART_HOST', `smtp.samplenet.org')

This line causes Sendmail to pass any mail it receives to the server smtp.samplenet.org rather than attempt to deliver it directly. Smart hosting will not work for you if your ISP, like many others, blocks any mail relaying. Some ISPs block relaying because it is frequently used to disseminate spam.

Setting Message Delivery Intervals

As mentioned earlier, Sendmail typically attempts to deliver messages as soon as it receives them, and again at regular intervals after that. If you have only periodic connections to the Internet, as with a dial-up connection, you likely would prefer that Sendmail hold all messages in the queue and attempt to deliver them at specific time intervals or at your prompt. You can configure Sendmail to do so by adding the following line to sendmail.mc:

 define(`confDELIVERY_MODE', `d')dnl

This line will cause Sendmail to only attempt mail delivery at regularly scheduled queue processing intervals (by default, somewhere between 20 and 30 minutes).

However, this delay time might not be sufficient if you are offline for longer periods of time. In those situations, you can invoke Sendmail with no queue processing time. For example, by default, Sendmail might start with the following command:

 # sendmail -bd -q30m

This tells Sendmail that it should process the mail queue (and attempt message delivery) every 30 minutes. You can change 30 to any other number to change the delivery interval. If you want Sendmail to wait for a specific prompt before processing the queue, you can invoke Sendmail with no queue time, like this:

 # sendmail -bd -q

This command tells Sendmail to process the queue once when it is started, and again only when you manually direct it to do so. To manually tell Sendmail to process the queue, you can use a command like the following:

 # sendmail -q

TIP

If you use networking over a modem, there is a configuration file for pppd called ppp.linkup, which is located in /etc/ppp. Any commands in this file will automatically be run each time the PPP daemon is started. You can add the line sendmail -q to this file to have your mail queue automatically processed each time you dial up your Internet connection.


Building the sendmail.cf File

Books are available to explore the depths of Sendmail configuration, but the Sendmail Installation and Operation Guide is the canonical reference. Configuration guidance can also be found through a Google search; many people use Sendmail in many different configurations. Fortunately, Fedora has provided a default Sendmail configuration that will work "out-of-the-box" for a home user as long as your networking is correctly configured and you do not require an ISP-like Sendmail configuration.

After you have made all your changes to sendmail.mc, you need to rebuild the sendmail.cf file. First, back up your old file:

 # cp /etc/mail/sendmail.cf /etc/mail/sendmail.cf.old

You must run sendmail.mc through the m4 macro processor in order to generate a usable configuration file. A command, such as the following, is used to do this:

 # m4 /etc/mail/sendmail.mc > /etc/mail/sendmail.cf

This command loads the cf.m4 macro file from /usr/share/sendmail-cf/m4/cf.m4 and then uses it to process the sendmail.mc file. The output, normally sent to STDOUT, is then redirected to the file sendmail.cf, and your new configuration file is ready. You will need to restart Sendmail before the changes will take effect.

TIP

Fedora also provides an alternative to using awk to rebuild the Sendmail configuration. As root, execute

 # make -C /etc/mail


Mail Relaying

By default, Sendmail will not relay mail that did not originate from the local domain. This means that if a Sendmail installation running at lion.org receives mail intended for cheetah.org, and that mail did not originate from lion.org, the mail will be rejected and will not be relayed. If you want to allow selected domains to relay through you, add an entry for the domain to the file /etc/mail/relay-domains. If the file does not exist, simply create it in your favorite text editor and add a line containing the name of the domain that you want to allow to relay through you. Sendmail will need to be restarted for this change to take effect.

CAUTION

You need a very good reason to relay mail; otherwise, do not do it. Allowing all domains to relay through you will make you a magnet for spammers who will use your mail server to send spam. This can lead to your site being blacklisted by many other sites, which then will not accept any mail from you or your site's users even if the mail is legitimate!


Forwarding Email with Aliases

Aliases allow you to have an infinite number of valid recipient addresses on your system, without having to worry about creating accounts or other support files for each address. For example, most systems have "postmaster" defined as a valid recipient, yet do not have an actual login account named "postmaster." Aliases are configured in the file /etc/aliases. Here is an example of an alias entry:

 postmaster: root

This entry will forward any mail received for "postmaster" to the root user. By default, almost all the aliases listed in the /etc/aliases file forward to root.

CAUTION

Reading email as root is a security hazard; a malicious email message can exploit an email client and cause it to execute arbitrary code as the user running the client. To avoid this danger, you can forward all of root's mail to another account and read it from there. You can choose one of two ways for doing this.

You can add an entry to the /etc/mail/aliases file that sends root's mail to a different account. For example, root: foobar would forward all mail intended for root to the account foobar.

The other way is to create a file named .forward in root's home directory that contains the address that the mail should forward to.


Anytime you make a change to the /etc/mail/aliases file, you will need to rebuild the aliases database before that change will take effect. This is done with

 # newaliases

Rejecting Email from Specified Sites

You read earlier in this chapter that you must be careful with mail relaying to avoid becoming a spam magnet. But what do you do if you are having problems with a certain site sending you spam? You can use the /etc/mail/access file to automatically reject mail from certain sites.

You can use several rules in the access file. Table 23.1 gives a list of these rules.

Table 23.1. The Various Possible Options for Access Rules

Option

Action

OK

Accepts mail from this site, overriding any rules that would reject mail from this site.

RELAY

Allows this domain to relay through the server.

REJECT

Rejects mail from this site and sends a canned error message.

DISCARD

Simply discards any message received from the site.

ERROR: "n message"

Where n is an RFC821-compliant error code number and message can be any message that you would like to send back to the originating server.


The following is an example of three rules used to control access to a Sendmail account. The first rejects messages from spam.com. The second rejects messages from lamer.com and displays an error message to that site. The third allows mail from the specific host user5.lamer.com, even though there is a rule that rejects mail from the site lamer.com. (For a more personal example of why you would bother to do this, I find that I get a lot of spam from the Hotmail domain, so I would just as soon reject it all. However, my wife uses a Hotmail account for her mail. If I did not allow her mail through, that would be a problem for me.)

 spam.com        REJECT lamer.com        ERROR:"550 Mail from spammers is not accepted at this site." user5.lamer.com    OK

Open the /etc/access file, enter the rules of your choice, and then restart Sendmail so that your changes to the access file take effect. That can be done with

 # /sbin/service sendmail restart

or any of the other ways we discussed in Chapter 14, "Automating Tasks."

     < Day Day Up > 

    Previous page
    Table of content
    Next page
    Red Hat Fedora 4 Unleashed
    Red Hat Fedora 4 Unleashed
    ISBN: 0672327929
    EAN: 2147483647
    Year: 2006
    Pages: 361
    Authors: Paul Hudson, Andrew Hudson, Bill Ball, Hoyt Duff
    BUY ON AMAZON
    Interprocess Communications in Linux: The Nooks and Crannies
    Certified Ethical Hacker Exam Prep
    The CISSP and CAP Prep Guide: Platinum Edition
    Excel Scientific and Engineering Cookbook (Cookbooks (OReilly))
    Visual C# 2005 How to Program (2nd Edition)
    Google Maps Hacks: Tips & Tools for Geographic Searching and Remixing
    flylib.com © 2008-2017.
    If you may any questions please contact us: flylib@qtcs.net
    Privacy policy