----- Original Message -----
From: "Michael Stauber" <bq (at mark) solarspeed.net>
To: <coba-e (at mark) bluequartz.org>
Sent: Thursday, September 11, 2008 10:40 AM
Subject: [coba-e:13940] Re: sendmail question
> Hi Ken,
>
>> Does anyone know if there would be a problem setting this in the
>> sendmail.cf PrivacyOptions as below:
>>
>> O PrivacyOptions=goaway
>>
>>
>> The default setting is:
>> O PrivacyOptions=needmailhelo needexpnhelo noexpn needvrfyhelo noreceipts
>> authwarnings noetrn noverb
>>
>>
>> So, I think all the goaway option adds in the novrfy
>> One of the Security Scanner companies our customers use would like us to
>> set it this way.
>>
>> Is there a reason to not do this?
>
> See:
> http://www.unix.com.ua/orelly/other/Sendmail_3rd/1565928393_ch24-91368.html#ch24-77194
>
> ------------------------------------------------------------------------------
> PrivacyOptions=goaway
>
> This is a shorthand way to set authwarnings, noexpn, novrfy, noverb,
> needmailhelo, needexpnhelo, needvrfyhelo, and nobodyreturn.
> ------------------------------------------------------------------------------
>
> That is indeed quite useful, as it's strictly locking down what Sendmail
> will
> do. Especially dissalowing verify is a good procedure. Otherwise people
> can
> use "verify" to find out what users you have on a box and then SPAM them
> all
> in one go. Which is not that uncommon.
>
> So yeah, I would recommend to put it in and give it a try.
>
> --
> With best regards,
>
> Michael Stauber
Michael
Thanks once again.
I'll give it a try.
----
Ken Marcus
Ecommerce Web Hosting by
Precision Web Hosting, Inc.
http://www.precisionweb.net