Mailing List Archive: 2 instances of sendmail? Port 25 & 587

2 instances of sendmail? Port 25 & 587

Oct 18, 2004, 6:45 PM

Post #1 of 4 (543 views)

Warning : Gentoo Newbie

I have no idea why there are 2 instances of sendmail running. This isn't
normal right??

What's port 881/famd for? I'm not running any NFS clients. Why is
portmap turned on? I gather it's portmap right?

This is what nmap localhost says

PORT STATE SERVICE
22/tcp open ssh
25/tcp open smtp
80/tcp open http
111/tcp open rpcbind <-- NFS ??
443/tcp open https
587/tcp open submission
783/tcp open hp-alarm-mgr <---spamassasin
881/tcp open unknown <---famd

telnet localhost 587
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
220 neuromancer.home.net ESMTP Sendmail 8.12.11/8.12.11; Mon, 18 Oct
2004 20:53:04 +0800

--
gentoo-user@gentoo.org mailing list

Re: 2 instances of sendmail? Port 25 & 587 [ In reply to ]

cgysin at gmx

Oct 19, 2004, 12:06 AM

Post #2 of 4 (541 views)

Permalink

Ow Mun Heng wrote:
> I have no idea why there are 2 instances of sendmail running. This isn't
> normal right??

google: port 587

shows you that it's normal: http://www.ietf.org/rfc/rfc2476.txt

> This is what nmap localhost says

nmap -A localhost gives some additional info.

Christoph
--
echo mailto: NOSPAM !#$.'<*>'|sed 's. ..'|tr "<*> !#:2" org@fr33z3

--
gentoo-user@gentoo.org mailing list

Re: MSA - 2 instances of sendmail? Port 25 & 587 [ In reply to ]

Ow.Mun.Heng at wdc

Oct 19, 2004, 9:01 PM

Post #3 of 4 (547 views)

Permalink

On Tue, 2004-10-19 at 15:06, Christoph Gysin wrote:
> Ow Mun Heng wrote:
> > I have no idea why there are 2 instances of sendmail running. This isn't
> > normal right??
>
> google: port 587
>
> shows you that it's normal: http://www.ietf.org/rfc/rfc2476.txt

I've read that RFC in it's entirety and from my understanding, port 587
is used for message submission.

quote :
-------
Message Submission Agent (MSA)

A process which conforms to this specification, which acts as a
submission server to accept messages from MUAs, and either delivers
them or acts as an SMTP client to relay them to an MTA.

While most email clients and servers can be configured to use port
587 instead of 25, there are cases where this is not possible or
convenient. A site MAY choose to use port 25 for message submission,
by designating some hosts to be MSAs and others to be MTAs.
--------

How does Gentoo uses this port 587? (I'm using evolution in which the
only thing it displays is _pass_ it to sendmail. (There doesn't seem to be
port.) (Unless I opt to pass it to SMTP)

How can one disable it form listening to port 587??

This is my sendmail.mc file:-

include(`/usr/share/sendmail-cf/m4/cf.m4')dnl
VERSIONID(`$Id: sendmail.mc,v 1.1 2004/05/30 09:20:40 robbat2 Exp $')dnl
OSTYPE(linux)dnl
DOMAIN(generic)dnl
FEATURE(`smrsh',`/usr/sbin/smrsh')dnl
FEATURE(`local_lmtp',`/usr/sbin/mail.local')dnl
define('PROCMAIL_MAILER_PATH',`/usr/bin/procmail')dnl
FEATURE(local_procmail,`',`procmail -t -Y -a $h -d $u')dnl
DAEMON_OPTIONS(`Port=smtp,Addr=127.0.0.1, Name=MTA')dnl
FEATURE(`accept_unresolvable_domains')dnl
MAILER(procmail)dnl
INPUT_MAIL_FILTER(`spamassassin', `S=local:/var/run/spamass-milter.sock, F=, T=C:15m;S:4m;R:4m;E:10m')dnl
define(`confMILTER_MACROS_CONNECT',`b, j, _, {daemon_name}, {if_name}, {if_addr}')dnl
MAILER(local)dnl
MAILER(smtp)dnl

I noticed that this is in /etc/mail/sendmail.cf on my FC2 install
FEATURE(`no_default_msa',`dnl')dnl

Reading through /usr/share/doc/sendmail-8.12.11-r3/README.cf.gz

no_default_msa Don't generate the default MSA daemon, i.e.,
DAEMON_OPTIONS(`Port=587,Name=MSA,M=E')
To define a MSA daemon with other parameters, use this
FEATURE and introduce new settings via DAEMON_OPTIONS().

Even after reading it through, I'm still confused. It further explains
that it's for Security, and asks to look at sendmail/SECURITY (which I
don't have on the local system and since I have I-net access, can anyone
please explain)?

--
Ow Mun Heng
Fedora GNU/Linux Core 2 on D600 1.4Ghz CPU kernel
2.6.7-2.jul1-interactive
Neuromancer 11:43:09 up 2:37, 8 users, load average: 0.47, 0.65, 0.75

--
gentoo-user@gentoo.org mailing list

Re: MSA - 2 instances of sendmail? Port 25 & 587 [ In reply to ]

Ow.Mun.Heng at wdc

Oct 20, 2004, 2:32 AM

Post #4 of 4 (567 views)

Permalink

On Wed, 2004-10-20 at 12:01, Ow Mun Heng wrote:
> On Tue, 2004-10-19 at 15:06, Christoph Gysin wrote:
> > Ow Mun Heng wrote:
> > > I have no idea why there are 2 instances of sendmail running. This isn't
> > > normal right??
> >
> > google: port 587
> >
> > shows you that it's normal: http://www.ietf.org/rfc/rfc2476.txt

> Even after reading it through, I'm still confused.

Okay.. I'm Not confused anymore. After reading the article on
www.samag.com (sysadmin magazine titled Improving Sendmail By Turning it
Off)

I now know the difference between the MTA/MSA and MSP.

Now, What I need to find out if the need to have the MTA is still
warranted.

I've tested it as such that _not_ running it as a daemon,
evolution/mails won't get delivered. (MSA is off) and processing the
queue results in nada.

Since I use POP and an ISP relay, I wonder if I can disable them MTA,
enable the MSA and point the

D{MTAHost}[127.0.0.1]

to the ISP relay.

But what about incoming emails? I use fetchmail to get my mails from the
ISP, which in turn forwards it to my machine's MTA for spam and clamav
before finally to /var/spool/mbox. Those wouldn't work otherwise right?
Meaning, if I use Evolution to just pop the mails from the ISP.

So.. what are my choices?

Is running the MTA via loopback still advisable?

--
Ow Mun Heng
Fedora GNU/Linux Core 2 on D600 1.4Ghz CPU kernel
2.6.7-2.jul1-interactive
Neuromancer 17:26:44 up 8:20, 13 users, load average: 0.63, 0.60, 0.59

--
gentoo-user@gentoo.org mailing list