Re: [Exim] Rejecting all connections from non-local hosts

Top Page
Delete this message
Reply to this message
Author: Dan Lowe
Date:  
To: James Antill
CC: Tom Huckstep, Dr Andrew C Aitchison, exim-users
Subject: Re: [Exim] Rejecting all connections from non-local hosts
Previously, James Antill said:
>
> Dan Lowe <dan@???> writes:
> >
> > I'd stop using inetd, start up a daemon (i.e. exim -bd -q1h) and set
> >
> > local_interfaces = 127.0.0.1
> >
> > Then it will bind only to localhost, and your "external" IP(s) won't
> > have a listening daemon on them.
>
> This doesn't do what you think it does. You'd should at least specify
> that anything that isn't 127.0.0.1 shouldn't be able to send messages
> (see the bugtraq archive for ways of coming in from the 'net and
> speaking to 127.0.0.1).


I forgot to add this to the above:

host_accept_relay = 127.0.0.1/32

-dan

--
Copying extensively from one source is plagiarism; copying extensively from
several is research.