Re: [exim] local server access

Top Page
Delete this message
Reply to this message
Author: Jasen Betts
Date:  
To: exim-users
Subject: Re: [exim] local server access
On 2017-08-20, Ltc Hotspot via Exim-users <exim-users@???> wrote:
> Dear Exim Users:
>
> Is this a valid rule to authorize local access to Exim:
> -A cP-Firewall-1-INPUT -s 127.0.0.1:25 -p tcp -m state --state NEW -m
> tcp --dport 25 -j ACCEPT
>


No, "-s 127.0.0.1:25" is wrong.

"-s 127.0.0.1/8" probably makes the most sense.


You may want to specify adestination address too, especially if your
firewall is doing NAT for some of 127.0.0.0/8.


Local access in a different way is by having execute permission on
/usr/lib/sendmail.

--
This email has not been checked by half-arsed antivirus software