[HSC-Unix] NOT running sendmail?

[varela]

As a test, I disabled sendmail on a Sun Workstation and was able to use 
"mailx" to send myself a message at my HSC address.

Now, "mailx" is just a Mail User Agent, not a Mail Transport Agent 
(like Sendmail), so does this mean that Solaris 8 is using something 
_other_ than Sendmail to send mail?

I remember how Lance Spitzner once mentioned in his paper "Armoring 
Solaris" that Solaris 7 didn't need to be running Sendmail in order to 
send logs, but this is Solaris 8 (which appears to be a different 
story).

Either way, I am able to send mail to an HSC email address on a 
Sendmail-less Solaris system - for what it's worth.

On Wednesday, Mar 5, 2003, at 13:50 US/Central, varela wrote:

> If I had some Sun Workstations, and they only needed to send logs to 
> an HSC address, can I run sendmail in queueing mode on that 
> Workstation to avoid getting exposed to the sendmail header exploit?
>
> This seems to disable access to port 25 from ANY requesting machines:
>
> **********
> Example1: request to port 25 from internet
>
> (these requests are already blocked at our router)
>
> *****
>
> Example2: request to port 25 from within subnet
>
> SUNxx{varela} % telnet SUNyy 25
> Trying 129.111.249.YY...
> telnet: Unable to connect to remote host: Connection refused
> **********
>
> But you can still send mail FROM the machine:
>
> biadXX{varela} % mail varelah at uthscsa.edu
> Subject: test from Sendmail running in queue mode
> Cc:
> EOT
>
> So basically, in queue mode, sendmail runs like this on the Sun:
>
> 0:00 /usr/lib/sendmail -q15m
>
> Whereas it normally would run like this:
>
> 0:02 /usr/lib/sendmail -bd -q15m
>
> Any thoughts?
>
> _______________________________________________
> HSC-Unix mailing list
> HSC-Unix at biochem.uthscsa.edu
> http://biochem.uthscsa.edu/mailman/listinfo/hsc-unix
>