rmfuhrer
n00b
Joined: 18 Jun 2003
Posts: 19
Location: Hawthorne, NY
|
 Posted: Tue Aug 01, 2006 12:36 am Post subject: exim/tcp wrappers not using host name when matching? |
 |
|
It seems that with exim, tcp wrappers appear not to use the symbolic name of the connecting client to determine whether to grant access.
E.g., if I have the following in /etc/hosts.allow:
and an inbound smtp connection is initiated from a host whose TCP address reverse-maps to, say, mailhub.verizon.net, exim refuses the connection, citing "tcp wrappers" as the reason (so says /var/log/mail/current):
| Code: |
Jul 31 20:21:37 [exim] 2006-07-31 20:21:37 refused connection from [14.14.14.40] (tcp wrappers)
|
(N.B.: The above address is fake, for illustration purposes.)
If instead I put the TCP network address of the relevant mail servers in .verizon.net, like so:
then exim accepts the connection.
What gives?
FWIW, tcp wrappers works perfectly fine for other daemons with symbolic host/domain names.
My machine's vital stats:
Gentoo 2006.0
AMD Athlon XP
| Code: | $ cat /proc/version
Linux version 2.6.14-gentoo-r2 (root@dungeon) (gcc version 3.3.6 (Gentoo 3.3.6, ssp-3.3.6-1.0, pie-8.7.8)) #3 PREEMPT Thu May 25 20:53:05 EDT 2006
$ equery list exim
[ Searching for package 'exim' in all categories among: ]
* installed packages
[I--] [ ] mail-mta/exim-4.60-r1 (0)
$ equery list tcp-wrappers
[ Searching for package 'tcp-wrappers' in all categories among: ]
* installed packages
[I--] [ ] sys-apps/tcp-wrappers-7.6-r8 (0)
$
|
_________________
Robert M. Fuhrer
"Smooth jazz is no jazz at all..." |
|
Networking & Security
