Scalix Forums


http://www.scalix.com/forums/

how to tell if sendmail is open relay?

http://www.scalix.com/forums/viewtopic.php?f=5&t=3831

Page 1 of 1

how to tell if sendmail is open relay?

Posted: Wed Sep 13, 2006 11:55 pm
by WizmanG
below is some entries in my /var/log/maillog. It looks like sendmail is accepting relays from other servers. I have tried several of the various online sites to test for an open relay and they come up negative yet it sure looks like it is relaying to me.

Can anyone offer some advice here on what to check?


Sep 13 23:50:07 mail sendmail[6048]: k8E3o0QB006048: to=<2694795.6759970@nicupdate.com>, delay=00:00:01, xdelay=00:00:01, mailer=relay, pri=40054, relay=[127.0.0.1] [127.0.0.1], dsn=2.0.0, stat=Sent (k8E3o5wI006049 Message accepted for delivery)
Sep 13 23:50:09 mail sendmail[6058]: k8E3o5wI006049: to=<2694795.6759970@nicupdate.com>, delay=00:00:03, xdelay=00:00:02, mailer=esmtp, pri=130886, relay=mail.nicupdate.com. [207.114.184.171], dsn=2.0.0, stat=Sent (Requested mail action okay, completed)

Posted: Thu Sep 14, 2006 3:57 am
by Valerion
It could be an internal process sending mail to 2694795.6759970@nicupdate.com, since it originated from 127.0.0.1. On the other hand, there's not enough info there to really say. You will have to check the originating IP and email address (Search for k8E3o0QB006048).
All times are UTC-04:00
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/