Re: sendmail problem

From: Shawn T. Rutledge (terhi.victor@logonet.com)
Date: Sat Apr 15 2000 - 22:13:29 EEST

Next message: Tomi Manninen: "Re: net-tools bug"

Previous message: Al Bolduc: "Re: sendmail problem"
In reply to: ron jochems: "Re: sendmail problem"
Next in thread: Tomi Manninen: "Re: sendmail problem"
Reply: Tomi Manninen: "Re: sendmail problem"
Reply: Aaron Sethman: "Re: sendmail problem"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sat, Apr 15, 2000 at 08:17:28PM +0200, ron jochems wrote:
> Can the 'nslookup' program be used without DNS running ? Can he retrieve
> names without DNS running ?

No.
>
> So no real nameserver is running as expected, but if i red your mail
> correctly, it may be possible to query names with nslookup although DNS
> isn't running....
> I want to stress out that i really don't want to use DNS, because it is
> complicating things more as needed.

Why? I used to put off setting up named, but it's kindof useful.
So far it has seemed worthwhile to me. The only sense in which I
worry about it is that the packet system ends up being too dependent
on the Internet... if the connection goes down then some packet
stuff stops working, and that makes it a lousy backup to the Internet.
Ideally hams should be capable of providing emergency services with
no dependencies on other systems that may or may not work.
>
>
> Another problem , which may be caused by the same problem:
>
> When my neigbour wants to send smtp mail towards me, this mail is rejected
> at my side, with the message : sender domain must resolve' .
> I believe this has got something to do with new security features within

Yes sendmail is picky about DNS, for spam-prevention. The pickier it
is, the harder it is for a spammer to spoof. So to me it's easier to just
bite the bullet and have a proper DNS server working than to figure out
how to disable these features in sendmail and make it less secure at
the same time... my system's a gateway, the same sendmail handles both
packet SMTP traffic and internet traffic, so I need it to be as secure
as any other Internet mail server.

The machines on my LAN all have proper DNS and reverse-DNS entries in
my bind config files, but it gets the rest of its info from the name
servers at my ISP, and caches this info. The cache speeds up frequent
lookups. ampr.org systems can be registered with the ucsd server and
the name/address mappings are available to any name server on the
internet, so if your neighbors are registered, then you won't have
anything to maintain (/etc/hosts file or whatever). Around here this
is standard practice.

-- 
  _______                   Shawn T. Rutledge / KB7PWD  zymlu.osrmjxkhua@mich.net
 (_  | |_)          http://www.bigfoot.com/~ecloud  vlojd@cabot-corp.com
 __) | | \________________________________________________________________
Get money for spare CPU cycles at http://www.ProcessTree.com/?sponsor=5903

Next message: Tomi Manninen: "Re: net-tools bug"
Previous message: Al Bolduc: "Re: sendmail problem"
In reply to: ron jochems: "Re: sendmail problem"
Next in thread: Tomi Manninen: "Re: sendmail problem"
Reply: Tomi Manninen: "Re: sendmail problem"
Reply: Aaron Sethman: "Re: sendmail problem"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Sat Apr 15 2000 - 22:21:24 EEST